Shane Kerr <sh...@time-travellers.org> writes: > Reading this document it basically seems like the hold-down timer is > actually a potential for mischief, rather than a good thing.
No, it's a useful thing (per the discussion in 5011 itself as to its purpose). The problem is that the length hold-down timer (used at the 5011 validator) does not equal the length of time the publisher must way before switching keys. 5011 only provides guidance for the validator, but leaves out the information to be used by the publisher. Thus, 5011 is really half the document it needs to be and the missing half can cause security implications if you can't self-derive the values. And judging buy our survey of experts, I don't think the average Joe will pick a safe value (hence the need for the document). -- Wes Hardaker Parsons _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
