Recall: Key rollover Work.
"Olaf M. Kolkman" <olaf@NLnetLabs.nl> Tue, 27 June 2006 07:55 UTC
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1Fv8QH-0002JW-Os for dnsext-archive@lists.ietf.org; Tue, 27 Jun 2006 03:55:49 -0400
Received: from psg.com ([147.28.0.62]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1Fv8QG-0005OA-7h for dnsext-archive@lists.ietf.org; Tue, 27 Jun 2006 03:55:49 -0400
Received: from majordom by psg.com with local (Exim 4.60 (FreeBSD)) (envelope-from <owner-namedroppers@ops.ietf.org>) id 1Fv8Mv-000Nik-V6 for namedroppers-data@psg.com; Tue, 27 Jun 2006 07:52:21 +0000
X-Spam-Checker-Version: SpamAssassin 3.1.1 (2006-03-10) on psg.com
X-Spam-Level:
X-Spam-Status: No, score=-2.5 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.1.1
Received: from [213.154.224.1] (helo=open.nlnetlabs.nl) by psg.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.60 (FreeBSD)) (envelope-from <olaf@NLnetLabs.nl>) id 1Fv8Ms-000NiI-7T for namedroppers@ops.ietf.org; Tue, 27 Jun 2006 07:52:18 +0000
Received: from [127.0.0.1] (open.nlnetlabs.nl [IPv6:2001:7b8:206:1:211:2fff:fed7:7378]) by open.nlnetlabs.nl (8.13.4/8.13.4) with ESMTP id k5R7qDPT050396; Tue, 27 Jun 2006 09:52:13 +0200 (CEST) (envelope-from olaf@NLnetLabs.nl)
In-Reply-To: <6.2.5.6.2.20060626105457.050ea9a8@nic.mx>
References: <6.2.5.6.2.20060612102822.03b52c00@ogud.com> <7.0.1.0.2.20060612174002.03d76008@nominum.com> <2805B0B0-CFA9-49E7-8ABD-4279673564D8@NLnetLabs.nl> <6.2.5.6.2.20060626105457.050ea9a8@nic.mx>
Mime-Version: 1.0 (Apple Message framework v750)
Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary="Apple-Mail-17--858642949"
Message-Id: <1C71D26A-A127-42B8-948B-F2808A3AC947@NLnetLabs.nl>
Cc: Namedroppers <namedroppers@ops.ietf.org>
Content-Transfer-Encoding: 7bit
From: "Olaf M. Kolkman" <olaf@NLnetLabs.nl>
Subject: Recall: Key rollover Work.
Date: Tue, 27 Jun 2006 09:52:12 +0200
To: Gustavo Lozano <glozano@nic.mx>
X-Pgp-Agent: GPGMail 1.1.2 (Tiger)
X-Mailer: Apple Mail (2.750)
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 93e7fb8fef2e780414389440f367c879
On Jun 26, 2006, at 6:05 PM, Gustavo Lozano asked: > I want to know what the status of this proposal is. Gustavo, Thanks for asking, you are the first person that makes me sure that my mail did not hit everybody's spam filter. In a separate thread the other week I posted a proposal. > 1 - All editors off drafts make sure that their drafts are alive in > the repository. (before start of summer, June 21) > 2 - Maybe some editors want to revoke their draft in lessen the > entropy in this space or just because they think another draft is > superior What we have is currently, without having talked to any of these folk: Expired: http://tools.ietf.org/wg/dnsext/draft-ietf-dnsext- trustupdate-threshold I am not sure what Ihren and Manning would like to see happening to this proposal. About to expire: http://tools.ietf.org/wg/dnsext/draft-ietf-dnsext- trustupdate-timers I work from the assumption that this is one of the (promising[*]) candidates And from individuals we have: draft-laurie-dnssec-key-distribution-02.txt Finally there is Thieries work: http://tools.ietf.org/wg/dnsext/draft-moreau-dnsext-takrem-dns-02.txt Note that this document (version 2) now has a "Derivative Works Limitation" given RFC3978 that excludes it from becoming a working group document. That also means that it is reasonable to not expect people to put any effort into reviewing and improving it. I am not sure what the procedure is when people want to run with version 1 of the document that was less restrictive. If people think then takrem is the best technology after sliced bread and it should be considered for working group adoption than feel free to post that on the list, we can either work with the author or sort out if it is possible to go from version 1. DLV is not on the table as far as I am concerned. In practice this means that we have 3 documents to consider. > > 3 - We start a reading round of one month. Here we need working group > participants doing real work (!). I would like to see (at least 5?) > people to read _all_ the drafts. (before IETF meeting (?)) > > 4 - While reading drafts reviewers create issue lists > > 5 - All people that read _all_ drafts (hopefully more than 5) will > provide their motivated preference, say a top 3. Motivation is to be > based on requirements. (There are folk who did proposal comparison. > It would be good if those were reviewed and reposted at that time). > Note that Alberto Martínez Herrera's comparison is still available at: http://docs.nicmxlabs.org.mx/itesm/dnsseckeyrolloverproposals.pdf I recall there is a second comparison but I cannot find it. Still we new more reviewers. By having people comment and choose on proposals we can get forward progression. > 6- We compile a shortlist of 1 or 2 documents and work to technically > improve those to get a consensus outcome. > > > I am hesitant to spend to much face-2-face time on rehashing previous > discussion. But if we manage to have some review done, issues > identified, and preferences stated, we may actually be able to make > real progress. > > I'd say that committed reviewers need anything between 1 to 3 days to > do this work. > > Any comments, alternative approaches, takers? As I am trying to come up with a reasonable way to pick up forward momentum, this is still an open question: comments, alternatives, takers? ---Olaf [*] oops .. there goes your neutral chair. ----------------------------------------------------------- Olaf M. Kolkman NLnet Labs http://www.nlnetlabs.nl/
- RFC2672bis DNAME update document Ólafur Guðmundsson /DNSEXT co-chair
- Re: Recall: Key rollover Work. Wouter Wijngaards
- Re: Recall: Key rollover Work. Paul Vixie
- Re: Recall: Key rollover Work. Andrew Sullivan
- Re: Recall: Key rollover Work. Thierry Moreau
- Re: Recall: Key rollover Work. bmanning
- Re: Recall: Key rollover Work. Ben Laurie
- Re: RFC2672bis DNAME update document David Blacka
- Re: Recall: Key rollover Work. Olaf M. Kolkman
- Recall: Key rollover Work. Olaf M. Kolkman
- Re: Recall: Key rollover Work. Edward Lewis
- Re: Recall: Key rollover Work. Suresh Krishnaswamy
- Re: Recall: Key rollover Work. Olaf M. Kolkman
- Re: Recall: Key rollover Work. Ben Laurie
- Re: Is keyrollover neccesary? (was Key rollover W… Paul Vixie
- Re: Is keyrollover neccesary? (was Key rollover W… Paul Vixie