> On Jan 8, 2020, at 12:20 PM, Paul Vixie <p...@redbarn.org> wrote: > > can we please not put the ZONEMD RR at the apex, or else, can we please add > an > ALG-ID to its rdata. because some day we're going to ship different kinds of > MD's, one of which is today's full-zone traversal-required version that > optimizes for AXFR, and another will be tomorrow's block hash that optimizes > for IXFR.
Paul, The current draft already does this future proofing, although earlier revisions did not. So maybe you missed the change and maybe we haven't done a good job of making this clear. The ZONEMD Digest Type field encodes both the hash algorithm (SHA384) and the traversal algorithm (SIMPLE). A future update can define a new Digest Type such as SHA384-MUMBLE in which the zone is traversed differently but the end result is still a SHA384 hash value. The Parameter field lets you encode some Digest Type specific parameter information. Perhaps something like Merkle tree depth, or whatever would be needed for some other traversal algorithm. DW
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
