I have reviewed the draft. Since the last update of this draft, a full collision has been found.
Do the authors intend to update the draft to state that SHA1 SHOULD NOT be used for DNSSEC signing (DNSKEY algorithm 5,6,7) and for DNSSEC Delegation (DS and CDS algorithm 1) ? Please also refrain from using MUST- SHOULD+ and SHOULD-. Roy > On 5 Jan 2017, at 21:28, Tim Wicinski <tjw.i...@gmail.com> wrote: > > All > > Since we're having so much fun on adopting work, let's have another one. We > discussed this work in Seoul, and there was a solid hum on adopting this work. > > This starts a Call for Adoption for: > draft-wouters-sury-dnsop-algorithm-update > > The draft is available here: > https://datatracker.ietf.org/doc/draft-wouters-sury-dnsop-algorithm-update/ > > Please review this draft to see if you think it is suitable for adoption by > DNSOP, and comments to the list, clearly stating your view. > > Please also indicate if you are willing to contribute text, review, etc. > > This call for adoption ends: 19 January 2017 > > Thanks, > tim wicinski > DNSOP co-chair > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
