[dnssec-deployment] meeting announcement: 18 June 2008
Ed.Lewis at neustar.biz
Fri Jun 20 11:48:52 EDT 2008
At 9:51 -0400 6/18/08, Suresh Krishnaswamy wrote:
>Slides should be attached
Comments on those slides, other than comments I have already made on the paper.
TARs "will reduce the need for parent zones to support DNSSEC."
Judging from my experience, DNSSEC is just not being adopted. TARs,
or the "threat of them" are not the roadblocks.
These two bullets are mutually at odds:
- Zones that currently publish SEP key information in the TAR will
not see a need for switching over to using the parent
- TAR registration represents an additional burden for the zone owner
If it is a burden, there is a need to switch. Changes are made for
two reasons - increase revenue or reduce costs. Removing a burden is
a cost reduction (all other things being equal)
Multiple instances - if anyone runs any TAR, it will have multiple
instances. That's a given. You can't achieve reliability with just
one or even just two instances of a service.
Edward Lewis +1-571-434-5468
Never confuse activity with progress. Activity pays more.
More information about the Dnssec-deployment