Re: [DNSOP] draft-ietf-dnsop-kskroll-sentinel-12

"Paul Hoffman" <paul.hoffman@vpnc.org> Thu, 03 May 2018 17:16 UTC

Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08ED112EA64 for <dnsop@ietfa.amsl.com>; Thu, 3 May 2018 10:16:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OzmP5CzcYCuo for <dnsop@ietfa.amsl.com>; Thu, 3 May 2018 10:16:29 -0700 (PDT)
Received: from mail.proper.com (Opus1.Proper.COM [207.182.41.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFE0812E9A1 for <dnsop@ietf.org>; Thu, 3 May 2018 10:16:29 -0700 (PDT)
Received: from [10.32.60.113] (50-1-51-141.dsl.dynamic.fusionbroadband.com [50.1.51.141]) (authenticated bits=0) by mail.proper.com (8.15.2/8.15.2) with ESMTPSA id w43HFc9C000430 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 3 May 2018 10:15:40 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: mail.proper.com: Host 50-1-51-141.dsl.dynamic.fusionbroadband.com [50.1.51.141] claimed to be [10.32.60.113]
From: "Paul Hoffman" <paul.hoffman@vpnc.org>
To: "Paul Vixie" <paul@redbarn.org>
Cc: dnsop <dnsop@ietf.org>
Date: Thu, 03 May 2018 10:16:25 -0700
X-Mailer: MailMate (1.11.2r5479)
Message-ID: <EBAABF32-EB77-4993-9ABD-26B5F49400D6@vpnc.org>
In-Reply-To: <5AEB417B.5080101@redbarn.org>
References: <CADyWQ+EE9YCCM03wKvd-HefpoQVqhOfeeLKLV8L2LJj+tqmEzA@mail.gmail.com> <CACWOCC936z-4j8e+d7bvhfr_Mk8tk64tkuiRDTRtrqrBTJBKJw@mail.gmail.com> <CAHw9_iLgTvPHe5jeL-0QZJ4+cxes8bBpCEULuDKThpjXoKzrbA@mail.gmail.com> <20180406134501.GC49550@vurt.meerval.net> <4A943DE7-81BC-41AC-93F7-4EC0975DF6B6@gmail.com> <5E7C31BE-EA5F-4A68-96FE-975CFAF77E42@apnic.net> <5AEB417B.5080101@redbarn.org>
MIME-Version: 1.0
Content-Type: text/plain; format=flowed
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/aS7eUPCN0mBgO1IfppqwT-5fRgU>
Subject: Re: [DNSOP] draft-ietf-dnsop-kskroll-sentinel-12
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 May 2018 17:16:31 -0000

On 3 May 2018, at 10:06, Paul Vixie wrote:

> what are the implications for older (pre-KSKROLL) validators when 
> icann eventually rolls the key?

None. That is, they will either be ready or they won't be, and this 
draft doesn't change that. This draft is about signaling, not about 
actually being ready for a roll.

--Paul Hoffman