On Thu, 2 May 2024, Scott Morizot wrote:
I think we need a clean update to RFC 8624 first that includes instructions to IANA to update the table. I don't think the current draft does that very well. And since the IANA table already has a Zone Signing column, I think we just want to change that one so it has more than a yes/no option per algorithm and then add a Validation column.
I think we're agreeing that it would be a good idea to continue to discourage SHA1, but not a good idea to surprise people by making it suddenly stop working, a la Redhat.
R's, John _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop