[dnssec-deployment] dot MUSEUM implemented DNSSEC
Suzanne_Woolf at isc.org
Fri Sep 19 11:29:48 EDT 2008
On Fri, Sep 19, 2008 at 10:27:39AM -0400, Dan Mahoney, System Admin wrote:
> This may be a very silly question, but has anyone assembled a page of
> "here are the TLD's we know of which have been signed, and you can verify
> each of them on the page *here* and their policy is listed *here*".
> Since DLV adoption seems to be slower than I'd like to see, this could be
> a good starting reference for anyone who just wants to authenticate
> against what's out there.
IANA will be publishing a list of TLD keys in the near future, as
directed by the ICANN Board of Directors recently. I checked with them
this morning and they're expecting to be online by mid-October or so.
The registry of keys will be subject to the same verification as any
other TLD information published by IANA, so if you trust their root
zone, you'll probably feel safe trusting their TLD key registry.
More information about the Dnssec-deployment