SO what's the use of the ICANN key ceremony then, when OpenDNSSEC can do an unattended KSK key rollover at will ?
Antoin Verschuren Technical Policy Advisor SIDN Utrechtseweg 310, PO Box 5022, 6802 EA Arnhem, The Netherlands P: +31 26 3525500 F: +31 26 3525505 M: +31 6 23368970 mailto:[email protected] xmpp:[email protected] http://www.sidn.nl/ > -----Original Message----- > From: [email protected] [mailto:opendnssec- > [email protected]] On Behalf Of Jakob Schlyter > Sent: Friday, June 11, 2010 11:09 AM > To: Antoin Verschuren > Cc: Open DNSSEC List > Subject: Re: [Opendnssec-user] OpenDNSSEC, HSM and key ceremony > > On 11 jun 2010, at 11.02, Antoin Verschuren wrote: > > > I wonder how ICANN or .se is doing this with OpenDNSSEC. > > OpenDNSSEC has currently no support for offline keys, so both ICANN and > .SE are most likely using online KSK and ZSK. > > jakob > > -- > Jakob Schlyter > Kirei AB - http://www.kirei.se/ > > _______________________________________________ > Opendnssec-user mailing list > [email protected] > https://lists.opendnssec.org/mailman/listinfo/opendnssec-user _______________________________________________ Opendnssec-user mailing list [email protected] https://lists.opendnssec.org/mailman/listinfo/opendnssec-user
