Protocol Action: 'Legacy Resolver Compatibility for Delegation Signer' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Mon, 25 August 2003 22:26 UTC
Received: from psg.com (mailnull@psg.com [147.28.0.62]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id SAA20622 for <dnsext-archive@lists.ietf.org>; Mon, 25 Aug 2003 18:26:44 -0400 (EDT)
Received: from lserv by psg.com with local (Exim 4.20) id 19rPcB-000Ooi-PO for namedroppers-data@psg.com; Mon, 25 Aug 2003 22:15:07 +0000
Received: from [131.137.245.203] (helo=mx03.forces.gc.ca) by psg.com with esmtp (Exim 4.20) id 19rPc2-000OmN-TI for namedroppers@ops.ietf.org; Mon, 25 Aug 2003 22:14:58 +0000
Received: from asgard.ietf.org (asgard.ietf.org [132.151.6.40]) by mx03.forces.gc.ca (DND-Mailer) with ESMTP id A1B5A20660C for <Allan.JER@forces.gc.ca>; Mon, 25 Aug 2003 18:13:16 -0400 (EDT)
Received: from majordomo by asgard.ietf.org with local (Exim 4.14) id 19rPD6-0001ED-PP for ietf-announce-list@asgard.ietf.org; Mon, 25 Aug 2003 17:49:12 -0400
Received: from apache by asgard.ietf.org with local (Exim 4.14) id 19rPB0-00013A-8i; Mon, 25 Aug 2003 17:47:02 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce:;
Cc: Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>, namedroppers@ops.ietf.org
Subject: Protocol Action: 'Legacy Resolver Compatibility for Delegation Signer' to Proposed Standard
Message-Id: <E19rPB0-00013A-8i@asgard.ietf.org>
Date: Mon, 25 Aug 2003 17:47:02 -0400
MIME-Version: 1.0
X-Spam-Status: No, hits=-4.0 required=5.0 tests=BAYES_10,TO_MALFORMED version=2.53
X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp)
Sender: owner-namedroppers@ops.ietf.org
Precedence: bulk
The IESG has approved the Internet-Draft 'Legacy Resolver Compatibility for Delegation Signer' <draft-ietf-dnsext-dnssec-2535typecode-change-04.txt> as a Proposed Standard. This document is the product of the DNS Extensions Working Group. The IESG contact persons are Thomas Narten and Margaret Wasserman. Technical Summary As the DNS Security (DNSSEC) specifications have evolved, the syntax and semantics of the DNSSEC resource records (RRs) have changed. Many deployed nameservers understand variants of these semantics. Dangerous interactions can occur when a resolver that understands an earlier version of these semantics queries an authoritative server that understands the newer Delegation Signer RR semantics, including at least one failure scenario that will cause an unsecured zone to be unresolvable. This document changes the type codes and mnemonics of the DNSSEC RRs (SIG, KEY, and NXT) for the newest version of these RRs to avoid those interactions. Using new type codes ensures that older and newer resolvers can easily distinguish which variant of these RRs have been implemented and how they should be interpreted. Working Group Summary There was consensus in the WG for this option. Note that this document is part of the overall DNSEXT plan of issuing individual updates to the DNSSEC RFCs; when all the changes have been completed, a revised version of 2535 will be issued tht incorportes all the changes. Protocol Quality This document has been reviewed for the IESG by Thomas Narten and Erik Nordmark. -- to unsubscribe send a message to namedroppers-request@ops.ietf.org with the word 'unsubscribe' in a single line as the message text body. archive: <http://ops.ietf.org/lists/namedroppers/>