[Dnssec-deployment] KSK Recovery (Was: Re: The list of TCRs please)
richard.lamb at icann.org
Sat Jun 12 21:11:38 EDT 2010
> In regards to the idea of post-ICANN continuity, your summary of the
> RKSH procedure doesn't discuss the method by which the RKSHes would be
> able to access the escrowed secret key in a post-ICANN world. While I
> can understand that publishing ALL of the details of such a plan might
> not be prudent, can we safely assume that this eventuality has been
> thought through, and that such a plan exists?
It has and it does for both KS and ZSK operators. As you may note, such a plan is part of the NTIA requirements doc and as IANA Functions operator.
More information about the Dnssec-deployment