As I mentioned earlier, in response to "we need this on standards track" I have produced a very short draft that would remove that requirement: https://www.ietf.org/id/draft-hoffman-dnssec-iana-cons-00.txt It covers both DS records and NSEC3 records, which have similar issues with hash algorithms. It also has an appendix that reflects Ekr's thoughts that maybe this all should be "specification required".
If the WG wants, this short draft could be a WG document. --Paul Hoffman
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
