On 5 okt 2009, at 15.52, Edward Lewis wrote:
In case you don't want to go through the slides,
True,...sorry...
I'd like to ask these questions:
1. If you are planning to receive DS records for any reason, how do you plan to do it? (You don't have to be a TLD to need to do this.)
As a registrar, via a home-brew protocol. netstring encoded json structures. Simpler than the epp extensions.
2. If you are operating DNS for people and are considering DNSSEC, have you thought about how the DS record will be passed to your customers' zones parents?
For the TLDs I am a registrar, via epp. For other TLDs, via some protocol to the registrar of the domain.
3. If you operate a recursive server, where to do plan to get DNSSEC public keys (for example, ISC's DLV)?
Not a question for me. paf