Internet-Draft draft-ietf-dnsop-rfc8624-bis-08.txt is now available. It is a
work item of the Domain Name System Operations (DNSOP) WG of the IETF.
Title: DNSSEC Cryptographic Algorithm Recommendation Update Process
Authors: Wes Hardaker
Warren Kumari
Name: draft-ietf-dnsop-rfc8624-bis-08.txt
Pages: 14
Dates: 2025-03-18
Abstract:
The DNSSEC protocol makes use of various cryptographic algorithms to
provide authentication of DNS data and proof of non-existence. To
ensure interoperability between DNS resolvers and DNS authoritative
servers, it is necessary to specify both a set of algorithm
implementation requirements and usage guidelines to ensure that there
is at least one algorithm that all implementations support. This
document updates RFC8624 by moving the canonical source of algorithm
implementation requirements and usage guidance for DNSSEC from
RFC8624 to an IANA registry. This is done both to allow the list to
be more easily updated, and to allow the list to be more easily
referenced. Future extensions to this registry can be made under
new, incremental update RFCs. This document also incorporates the
revised IANA DNSSEC considerations from [RFC9157].
The document does not change the status (MUST, MAY, RECOMMENDED, etc)
of any of the algorithms listed in RFC8624; that is the work of
future documents.
The IETF datatracker status page for this Internet-Draft is:
https://datatracker.ietf.org/doc/draft-ietf-dnsop-rfc8624-bis/
There is also an HTMLized version available at:
https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-rfc8624-bis-08
A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-dnsop-rfc8624-bis-08
Internet-Drafts are also available by rsync at:
rsync.ietf.org::internet-drafts
_______________________________________________
DNSOP mailing list -- dnsop@ietf.org
To unsubscribe send an email to dnsop-le...@ietf.org
