[DNSOP] draft-mglt-dnsop-dnssec-validator-requirements-00.txt

Daniel Migault <mglt.ietf@gmail.com> Thu, 13 February 2014 15:18 UTC

Return-Path: <mglt.ietf@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 32F611A01F1 for <dnsop@ietfa.amsl.com>; Thu, 13 Feb 2014 07:18:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id yHImEoaFaPpJ for <dnsop@ietfa.amsl.com>; Thu, 13 Feb 2014 07:17:53 -0800 (PST)
Received: from mail-we0-x234.google.com (mail-we0-x234.google.com [IPv6:2a00:1450:400c:c03::234]) by ietfa.amsl.com (Postfix) with ESMTP id 421DD1A0291 for <dnsop@ietf.org>; Thu, 13 Feb 2014 07:17:47 -0800 (PST)
Received: by mail-we0-f180.google.com with SMTP id u57so7555086wes.39 for <dnsop@ietf.org>; Thu, 13 Feb 2014 07:17:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=ebNmL4IwzQnVruE73BhUz+cZAqLcm1jDo08wweVvHwg=; b=J2e6d25Yf+X291AN5xc5VfkJz1Gtk+l5Og6qlXMP1m3KHga8wJzz5Qdl56vOZZVYRv gzLER2xKxnsNRnxEpMKN7kpuq7IrmCa0j+813SWBYnKfCklamcioSxzkWr3OHqQ1dJLE H1m9EEj3LVtKrye3oB+mZZjvVC+j/9MoBNyIfKpKKU8NPJnKAyJS1XgyD1wceyiEl+jW mIQU4FLEWOtdVr614aL/0Skv28OEI6xxVF/wUub2zPJawX00Au57bBnmA6/7ta+ZZYOM XwcL0S/2gTFgggzGoBgFxyfbhRrH5/pfkWWscaLSpQ4YG2xQhYry5L6MD9ggM19f4ezM qe/g==
MIME-Version: 1.0
X-Received: by with SMTP id ca17mr6978199wib.41.1392304665680; Thu, 13 Feb 2014 07:17:45 -0800 (PST)
Received: by with HTTP; Thu, 13 Feb 2014 07:17:45 -0800 (PST)
Date: Thu, 13 Feb 2014 16:17:45 +0100
Message-ID: <CADZyTkk1LOM9R=vP+fc4HGjUVoZE2VxtpmSyEE-0A8mTHUKgNA@mail.gmail.com>
From: Daniel Migault <mglt.ietf@gmail.com>
To: dnsop <dnsop@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
Subject: [DNSOP] draft-mglt-dnsop-dnssec-validator-requirements-00.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Feb 2014 15:18:00 -0000


Please find a draft listing requirements for a DNSSEC Validator.
Initially, I presented a draft in homenet about DHCP options for a
DNSSEC validators. After feed backs I received I decided to work first
on the requirements.

Feel free to comment them.


A new version of I-D, draft-mglt-dnsop-dnssec-validator-requirements-00.txt
has been successfully submitted by Daniel Migault and posted to the
IETF repository.

Name: draft-mglt-dnsop-dnssec-validator-requirements
Revision: 00
Title: DNSSEC Validators Requirements
Document date: 2014-02-13
Group: Individual Submission
Pages: 9

   DNSSEC provides data integrity and authentication for DNSSEC
   validators.  However, without valid trust anchor(s) and an acceptable
   value for the current time, DNSSEC validation cannot be performed.
   This document lists the requirements to be addressed so resolvers can
   have DNSSEC validation can be always-on.

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

Daniel Migault
Orange Labs -- Security
+33 6 70 72 69 58