Document Action: 'DNSSEC Opt-In' to Experimental RFC
The IESG <iesg-secretary@ietf.org> Sun, 08 April 2007 00:28 UTC
Return-path: <ietf-announce-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1HaLGC-0006R5-AJ; Sat, 07 Apr 2007 20:28:00 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1HaLGA-0006MO-OT for ietf-announce@ietf.org; Sat, 07 Apr 2007 20:27:58 -0400
Received: from ns4.neustar.com ([156.154.24.139]) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1HaLG9-0000Lh-Ek for ietf-announce@ietf.org; Sat, 07 Apr 2007 20:27:58 -0400
Received: from stiedprstage1.ietf.org (stiedprstage1.va.neustar.com [10.31.47.10]) by ns4.neustar.com (Postfix) with ESMTP id 620472AC97; Sun, 8 Apr 2007 00:27:27 +0000 (GMT)
Received: from ietf by stiedprstage1.ietf.org with local (Exim 4.43) id 1HaLFf-0007Sl-5c; Sat, 07 Apr 2007 20:27:27 -0400
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1HaLFf-0007Sl-5c@stiedprstage1.ietf.org>
Date: Sat, 07 Apr 2007 20:27:27 -0400
X-Spam-Score: -2.8 (--)
X-Scan-Signature: 52f7a77164458f8c7b36b66787c853da
Cc: dnsext mailing list <namedroppers@ops.ietf.org>, dnsext chair <dnsext-chairs@tools.ietf.org>, Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Document Action: 'DNSSEC Opt-In' to Experimental RFC
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'DNSSEC Opt-In ' <draft-ietf-dnsext-dnssec-opt-in-09.txt> as an Experimental RFC This document is the product of the DNS Extensions Working Group. The IESG contact persons are Mark Townsley and Jari Arkko. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-opt-in-09.txt Technical Summary opt-in is a method to disable the authenticated denial of existence for a range of domain names in a zone. It has been developed to generate a sparse set of NSEC RRs in a zone that contains mostly delegations i.e. to opt-in the secure delegations. The span of delegations for which authenticated denial is not available is still indicated using an NSEC resource record. 'NSEC-bit' in the type bitmap of the NSEC RDATA is used to signal the different semantic of the opt-in type NSEC RR. opt-in is a methodology that is backwards incompatible with DNSSEC; in order to perform a trial the methodology described in draft-ietf-dnsext-dnssec-experiments is applied. Working Group Summary A couple of years ago this document had thourough technical review around 2002. This version of the document has been slightly updated to reflect changes to DNSSEC since 2002 and to turn it into an experiment of the form described in draft-ietf-dnsext-dnssec-experiments. During the development of the OPT-IN spec before and in 2002 there has been in depth review and feedback by several core members of the working group. At that time the consensus was that the document was technologically solid but there was no consent the mechanism. This time around the views of many folk have changed and they do not have any problems with the OPT-IN technology going forward as an experiment. The same functionality is introduced work currently in DNSEXT NSEC3. Document Quality The document has been reviewed by Scott Rose (http://ops.ietf.org/lists/namedroppers/namedroppers.2006/msg00316.html) Mark Kosters (http://ops.ietf.org/lists/namedroppers/namedroppers.2006/msg00309.html, he is one of the initial editors) Rodney Joffe (http://ops.ietf.org/lists/namedroppers/namedroppers.2006/msg00335.html) and dnsext chair Olaf Kolkman. There has been some discussion after we advanced the document in which it became clear that Ed Lewis also reviewed the document and supported experimental status. (http://ops.ietf.org/lists/namedroppers/namedroppers.2006/msg00902.html) _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce