[Dnssec-deployment] Dropping IANA ITAR entries
Ed.Lewis at neustar.biz
Wed Aug 4 14:31:14 EDT 2010
(In an attempt to stop this thread -) How about this?
IANA continues to have ITAR sitting there until they are tired of it.
It's IANA's prerogative.
If there are any validation errors that can be traced back to a stale
trust anchor in ITAR, the trust anchor is removed.
Optionally, IANA refuses new trust anchors but allows existing ones
to be updated. (By "new" I mean a TLD is prevented by adding one if
they do not have one now.)
There may be some folks relying on the trust anchors in ITAR - if
they don't have SHA-2 code available for example (as has been
I don't see a reason to kill ITAR just because it can be done.
There's no need to force people into the future (ie the signed root).
NeuStar You can leave a voice message at +1-571-434-5468
Spouses, like Internet protocols, lack necessary troubleshooting tools. Sigh.
More information about the Dnssec-deployment