On 1/21/20 6:03 PM, Tony Finch wrote: > Matthijs Mekking <matth...@pletterpet.nl> wrote: > >> I am not sure how they executed the algorithm rollover precisely. >> Particularly, were there ever two DS records in the root zone with >> different algorithms for these zones? > > I can answer that :-) > > Algorithm rollovers have to be double-KSK rollovers because DS records > have to have a subset of the algorithms of the DNSKEY records. Having both > algorithms in the DS record can only slow down the rollover so it's hard > to think of situations where it would make sense (other than Shumon's > multi-provider disagreement!) As I suspected, in that case they were never candidate for the multiple algorithms check. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
- Re: [DNSOP] AD review of draft-ietf-dnsop-multi-provid... Warren Kumari
- Re: [DNSOP] AD review of draft-ietf-dnsop-multi-p... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-dnsop-mul... Warren Kumari
- Re: [DNSOP] AD review of draft-ietf-dnsop-multi-provid... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-dnsop-multi-p... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-dnsop-mul... Steve Crocker
- Re: [DNSOP] AD review of draft-ietf-dnsop-mul... Frederico A C Neves
- Re: [DNSOP] AD review of draft-ietf-dnsop... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-dnsop-mul... Matthijs Mekking
- Re: [DNSOP] AD review of draft-ietf-dnsop... Tony Finch
- Re: [DNSOP] AD review of draft-ietf-d... Matthijs Mekking
- Re: [DNSOP] AD review of draft-ietf-dnsop... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-d... Matthijs Mekking
- Re: [DNSOP] AD review of draft-ietf-dnsop-multi-p... Shumon Huque
- Re: [DNSOP] AD review of draft-ietf-dnsop-mul... Warren Kumari
