DNSSEC mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Derek Atkins <warlord@MIT.EDU>
Cc: Scott Rose <scottr@antd.nist.gov>, <dnssec@cafax.se>
From: Jakob Schlyter <jakob@crt.se>
Date: Tue, 4 Sep 2001 19:05:06 +0200 (MEST)
In-Reply-To: <sjmy9nurj2d.fsf@rcn.ihtfp.org>
Sender: owner-dnssec@cafax.se
Subject: Re: CERTificates and public keys

On 4 Sep 2001, Derek Atkins wrote:

> No, a KEY record should ONLY be used for DNSSec keys.  No application
> keys should be put into KEY records.

rfc 2535 specifies that KEY is to be used for both applications and dnssec
itself. my APPKEY draft changes this and recommends that KEY is deprecated
for all other protocol values than dnssec.

	jakob

Follow-Ups:
- Re: CERTificates and public keys
  - From: Derek Atkins <warlord@MIT.EDU>

References:
- Re: CERTificates and public keys
  - From: Derek Atkins <warlord@MIT.EDU>

Prev by Date: Re: CERTificates and public keys
Next by Date: Re: CERTificates and public keys
Prev by thread: Re: CERTificates and public keys
Next by thread: Re: CERTificates and public keys
Index(es):
- Date
- Thread

Home | Date list | Subject list