[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Transition from 2535 to opt-in

To: Ted Lindgreen <ted@tednet.nl>
Subject: Re: Transition from 2535 to opt-in
From: Daniel Massey <masseyd@isi.edu>
Date: Wed, 05 Dec 2001 09:42:57 -0500
CC: Paul A Vixie <vixie@vix.com>, namedroppers@ops.ietf.org
References: <200112051050.fB5Aora44300@open.nlnetlabs.nl>

Ted Lindgreen wrote:
> 
> [Quoting Paul A Vixie, on Nov 30, 21:33, in "Re: Transition from  ..."]
> > i keep looking at opt-in and DS and asking "how many more years will it take
> > before we get the complexity managed in dnssec and have widely deployed it?"
> 
> Hi,
> 
> There are two issues here on which timely deployment, or
> deployment ever depends, first the conclusions:
> 
> DS: we need it.
> OptIn: if OptIn, why not just forget NXT?
> 
> Let me explain:
> 
> - DS:
>       There is a real issue with the parent-child communication
>       in 2535, which must be resolved, before TLDs can deploy it.

Ted is exactly right.  We need DS to make wide scale deployment  
feasible. The only thing I would add is that the need for DS is not 
just limited to just TLDs.  Based on our test deployment and related 
work we have been doing, DS is essential for anyone that has to deal 
with multiple organizations (i.e. anyone with one or more child zones 
that are run by someone other than you).    

Dan

to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.

References:
- Re: Transition from 2535 to opt-in
  - From: ted@tednet.nl (Ted Lindgreen)

Prev by Date: Re: Transition from 2535 to opt-in
Next by Date: DNSEXT agenda at 52 IETF.
Prev by thread: Re: Transition from 2535 to opt-in
Next by thread: Re: Transition from 2535 to opt-in
Index(es):
- Date
- Thread