To:
Edward Lewis <lewis@tislabs.com>
cc:
"Scott Rose" <scottr@antd.nist.gov>, dnssec@cafax.se
From:
Jaap Akkerhuis <jaap@sidn.nl>
Date:
Thu, 14 Jun 2001 09:40:51 +0200
In-reply-to:
Your message of Wed, 13 Jun 2001 15:11:57 -0400. <v03130304b74d63cf742f@[10.0.1.7]>
Sender:
owner-dnssec@cafax.se
Subject:
Re: Verisign's opt-in twist
The rationale is that unsecured zones are just as at risk as they are now. The upside is that there are no wasted cycles generating NXT's and KEY's for them. That might true, but it does change the semantics of the NXT record. But as far as I understand, the difference between an unsecured zone and a non-existing zone is gone. jaap