Subject: [dns-wg] DNSSEC - DS RR provisioning Date: Mon, Oct 05, 2009 at 03:52:06PM +0100 Quoting Edward Lewis (Ed.Lewis@neustar.biz):
In case you don't want to go through the slides, I'd like to ask these questions:
1. If you are planning to receive DS records for any reason, how do you plan to do it? (You don't have to be a TLD to need to do this.)
N/A
2. If you are operating DNS for people and are considering DNSSEC, have you thought about how the DS record will be passed to your customers' zones parents?
Manually. I sign the zones and publish the DS via <method> to customer who is responsible for DS submission. Not good, I agree, but for now will have to do.
3. If you operate a recursive server, where to do plan to get DNSSEC public keys (for example, ISC's DLV)?
I keep up with SE manually and otherwise am waiting for ".". -- Måns Nilsson