Protocol Action: 'Signaling Trust Anchor Knowledge in DNS Security Extensions (DNSSEC)' to Proposed Standard (draft-ietf-dnsop-edns-key-tag-05.txt)

The IESG <iesg-secretary@ietf.org> Tue, 21 February 2017 17:21 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 5902E12943D; Tue, 21 Feb 2017 09:21:44 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Signaling Trust Anchor Knowledge in DNS Security Extensions (DNSSEC)' to Proposed Standard (draft-ietf-dnsop-edns-key-tag-05.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 6.45.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <148769770436.19017.83220160998183434.idtracker@ietfa.amsl.com>
Date: Tue, 21 Feb 2017 09:21:44 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/7yhjQhd-8g0ksONSdXWe0Y1RQ3k>
Cc: dnsop-chairs@ietf.org, joelja@gmail.com, draft-ietf-dnsop-edns-key-tag@ietf.org, The IESG <iesg@ietf.org>, dnsop@ietf.org, rfc-editor@rfc-editor.org
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.17
Reply-To: ietf@ietf.org
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Feb 2017 17:21:44 -0000

The IESG has approved the following document:
- 'Signaling Trust Anchor Knowledge in DNS Security Extensions (DNSSEC)'
  (draft-ietf-dnsop-edns-key-tag-05.txt) as Proposed Standard

This document is the product of the Domain Name System Operations Working
Group.

The IESG contact persons are Benoit Claise and Joel Jaeggli.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-dnsop-edns-key-tag/





Technical Summary

This document specifies two different ways for validating DNS resolvers
to signal to a server which DNSSEC keys are referenced in their chain-of-
trust.  The data from such signaling allow zone administrators to
monitor the progress of rollovers in a DNSSEC-signed zone.    This
document describes two independent methods for validating resolvers
to publish their referenced keys: an EDNS option and a different
DNS query.


Working Group Summary


The working group was in strong consensus behind this document. One thing
which did emerge was that there was a division over two methods for
publishihng the keys (EDNS option vs a DNS query).  It turned out that each
method had its positives and its negatives.  The consensus from the working
group was to offer both alternatives, documents the flaws in each.

Document Quality

The document shepherd did a deep dive on the document for technical
correctness, as well as an editorial pass for grammar and diction.
The shepherd feels this document is ready for publication.

(4)

Personnel

Tim Wickinski is the document shpeherd, Joel Jaeggli is the Area Director