-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi George,
No comment on section 4.1.4, but wanted to note a mistake in your post.
On 05/09/2011 08:22 AM, George Barwood wrote:
> I have a comment about section 4.1.4. Rollover for a Single Type Signing Key
> rollover.
>
> The following simple sc
I have a comment about section 4.1.4. Rollover for a Single Type Signing Key
rollover.
The following simple scheme doesn't seem to be covered.
(1) Introduce new key DNS_K_2
(2) Add DS record for DNS_K_2 to parent zone.
(3) Wait for DNS_K_2 and it's DS record to propagate.
(4) Stop signing w
