Last Call: <draft-ietf-dnsop-cds-consistency-09.txt> (Clarifications on CDS/CDNSKEY and CSYNC Consistency) to Proposed Standard
The IESG <iesg-secretary@ietf.org> Wed, 15 October 2025 13:21 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@mail2.ietf.org
Received: from [10.244.8.144] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id 6FCBB740E7D3; Wed, 15 Oct 2025 06:21:56 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Last Call: <draft-ietf-dnsop-cds-consistency-09.txt> (Clarifications on CDS/CDNSKEY and CSYNC Consistency) to Proposed Standard
X-Test-IDTracker: no
X-IETF-IDTracker: 12.50.0
Auto-Submitted: auto-generated
Precedence: bulk
Sender: iesg-secretary@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <176053451637.1098305.3254265455926330270@dt-datatracker-84f8f646b-tg6mn>
Date: Wed, 15 Oct 2025 06:21:56 -0700
Message-ID-Hash: VSQGBOF5MMFG5CT3TTNQXQMDY7KBXQNQ
X-Message-ID-Hash: VSQGBOF5MMFG5CT3TTNQXQMDY7KBXQNQ
X-MailFrom: iesg-secretary@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ietf-announce.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: dnsop-chairs@ietf.org, dnsop@ietf.org, draft-ietf-dnsop-cds-consistency@ietf.org, mohamed.boucadair@orange.com, ondrej@sury.org
X-Mailman-Version: 3.3.9rc6
Reply-To: last-call@ietf.org
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/R829YKqd8ALcxQ195OTEijHxQYU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Owner: <mailto:ietf-announce-owner@ietf.org>
List-Post: <mailto:ietf-announce@ietf.org>
List-Subscribe: <mailto:ietf-announce-join@ietf.org>
List-Unsubscribe: <mailto:ietf-announce-leave@ietf.org>
The IESG has received a request from the Domain Name System Operations WG (dnsop) to consider the following document: - 'Clarifications on CDS/CDNSKEY and CSYNC Consistency' <draft-ietf-dnsop-cds-consistency-09.txt> as Proposed Standard The IESG plans to make a decision in the next few weeks, and solicits final comments on this action. Please send substantive comments to the last-call@ietf.org mailing lists by 2025-10-29. Exceptionally, comments may be sent to iesg@ietf.org instead. In either case, please retain the beginning of the Subject line to allow automated sorting. Abstract Maintenance of DNS delegations requires occasional changes of the DS and NS record sets on the parent side of the delegation. For the case of DS records, "Automating DNSSEC Delegation Trust Maintenance" (RFC 7344) provides automation by allowing the child to publish CDS and/or CDNSKEY records holding the prospective DS parameters which the parent can ingest. Similarly, "Child-to-Parent Synchronization in DNS" (RFC 7477) specifies CSYNC records to indicate a desired update of the delegation's NS (and glue) records. Parent-side entities (e.g., Registries and Registrars) can query these records from the child and, after validation, use them to update the parent- side Resource Record Sets (RRsets) of the delegation. This document specifies that when performing such queries, parent- side entities has to ensure that updates triggered via CDS/CDNSKEY and CSYNC records are consistent across the child's authoritative nameservers, before taking any action based on these records. This document updates RFC 7344 and RFC 7477. The file can be obtained via https://datatracker.ietf.org/doc/draft-ietf-dnsop-cds-consistency/ No IPR declarations have been submitted directly on this I-D.