Document: draft-ietf-dnsop-must-not-sha1
Title: Deprecating the use of SHA-1 in DNSSEC signature algorithms
Reviewer: Yoav Nir
Review result: Ready
The document is fine as it is. I will say that the Security Considerations
section is a bit strange:
This document deprecates the use of RSASHA1 a
Reviewer: Yoav Nir
Review result: Has Issues
Hi.
I agree with what the draft says, and also wth Barry Leiba's comments about
terminology. Still, there are two things in the draft text that stood out as
strange:
In the introduction, we have "DNSSEC [RFC9364] originally made extensive use of
SHA-1
