To:
ietf-provreg@cafax.se
CC:
"'WG-DNS'" <wg-dns@fccn.pt>
From:
Eduardo Duarte <eduardo.duarte@fccn.pt>
Date:
Mon, 25 Jan 2010 14:56:53 +0000
Sender:
owner-ietf-provreg@cafax.se
User-Agent:
Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; rv:1.9.1.7) Gecko/20100111 Thunderbird/3.0.1
Subject:
[ietf-provreg] Revision of 4310
Hello, I work for the .PT ccTLD and I'm starting to add the DNSSEC extension under our EPP implementation. For doing this I'm following the the new revision of the 4310 RFC and I was wondering something after reading it... On our implementation of DNSSEC a domain can have multiple DS keys associated were some are active and other are in an inactive state. On the secDNS.xsd I didn't see any way to have multiple keys send in the info command and have a way to show if they are active or not. Was this matter discuss on the list already!? If no can I propose a small change in XSD (I know that is probably to late for that....). My suggestion is to add a Active/Non-Active field on the DSdataType so the definition changes to the following: <complexType name="dsDataType"> <sequence> <element name="keyTag" type="unsignedShort"/> <element name="alg" type="unsignedByte"/> <element name="digestType" type="unsignedByte"/> <element name="digest" type="hexBinary"/> <element name="maxSigLife" type="secDNS:maxSigLifeType" minOccurs="0"/> <element name="keyData" type="secDNS:keyDataType" minOccurs="0"/> <element name="active" type="boolean" minOccurs="0"/> </sequence> </complexType> Thanks and best regards, Eduardo Duarte -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- List run by majordomo software. For (Un-)subscription and similar details send "help" to ietf-provreg-request@cafax.se