On Sat, 15 Oct 2016, Ólafur Guðmundsson wrote:
I have domains signed by all combinations of signing algorithms and DS digests as well as Nsec variants Ds-n.alg-m-nsec.dnssec-test.orgReplace n with 1..4 M with 1..14 Nsec is one of Nsec nsec3 none
I'd be veryinterested if you could create an algorithm called "99" (or something), and we could test that. Anyone not loading the "99" resource is violating the "SHOULD", even if they understand ECDSA.
This would investigate ratio of problems when we want to introduce a new algorithm in the future.
-- Mikael Abrahamsson email: swm...@swm.pp.se
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
