I need to agree with Scott here. In the DNS world, we're slow to adopt new
DNSSEC crypto algorithms due to speed of deployment.
And DNSSEC has been around so long we have been giving guidance telling
people to stop using DSA and MD5.
ed25119 should be more than fine, and others can be added if
On Friday, March 10, 2023 2:32:36 PM EST Jan Dušátko wrote:
> Dear,
> I would like to recommend change/extend support of algorithms for DKIM
> signage. Last update of algorithms are in RFC 8463, still not widely
> supported. Right now we facing issues with the long DKIM key
> distribution and
Dear,
I would like to recommend change/extend support of algorithms for DKIM
signage. Last update of algorithms are in RFC 8463, still not widely
supported. Right now we facing issues with the long DKIM key
distribution and lack of support, allowing the ECC signature can solve
problem with