[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)

To: Andrew Sullivan <ajs@shinkuro.com>
Subject: Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
From: Matt Larson <mlarson@verisign.com>
Date: Wed, 10 Dec 2008 12:06:55 -0500
Cc: namedroppers@ops.ietf.org
In-reply-to: <20081210151604.GE16811@shinkuro.com>
References: <Pine.LNX.4.64.0809301237230.27246@mint> <200812090324.mB93OARV045445@drugs.dv.isc.org> <20081209143420.GA8932@shinkuro.com> <20081210030636.GA565@sirocco.local> <20081210151604.GE16811@shinkuro.com>
User-agent: Mutt/1.5.18 (2008-05-17)

On Wed, 10 Dec 2008, Andrew Sullivan wrote:
> I therefore ask those currently objecting to the algorithm aliasing
> whether they can live with the current arrangement, with the proviso
> that we will do something about this in dnssec-bis-updates.  (This is
> option 3.)

No.

> I also ask those who object to the current text, and who
> cannot support option 3, to state explicitly that they'd rather delay
> deployment of SHA-2 than live with this compromise.

http://en.wikipedia.org/wiki/False_dilemma

Your use of the phrase "delay deployment of SHA-2" is unnecesarily
dramatic.  What sort of delay are you talking about?  We already have
proposed text from Jelte.  Or put the -05 text back if there is
insufficient objection to that option.  Let's take until the end of
the week to bring this to a conclusion--from reponses to far it looks
to me like we are close to rough consensus--and then issue another
WGLC.  That's another two weeks, right?  I'll gladly wait another
month to avoid the clutter of more algorithm aliases.

Matt

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

References:
- Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
  - From: Sam Weiler <weiler@tislabs.com>
- Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
  - From: Mark Andrews <Mark_Andrews@isc.org>
- Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
  - From: Andrew Sullivan <ajs@shinkuro.com>
- Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
  - From: Matt Larson <mlarson@verisign.com>
- Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
  - From: Andrew Sullivan <ajs@shinkuro.com>

Prev by Date: Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
Next by Date: Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
Previous by thread: Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
Next by thread: Re: implied NSEC3 support in rsasha256 (was: [dnsext] Re: Working Group Last Call for draft-ietf-dnsext-dnssec-rsasha256-05)
Index(es):
- Date
- Thread