On Sun, Apr 10, 2016 at 10:18:11AM -0400, Tim Wicinski <tjw.i...@gmail.com> wrote a message of 35 lines which said:
> This starts a Call for Adoption for Aggressive use of NSEC/NSEC3 > draft-fujiwara-dnsop-nsec-aggressiveuse I think it is an useful technique and I think the working group should adopt it and work on it. I'm willing to review. I note there is some relationship with draft-ietf-dnsop-nxdomain-cut. It is "NXDOMAIN cut plus synthesis (if you have DNSSEC)". Technically speaking, the weakest point is about NSEC3: most zones (except the root) are not signed with NSEC, and negative answers synthesis with NSEC3 seems... difficult (at least for my brain). _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
