On 28 Sep 2004, at 23:49, Keith Davidson wrote:
Why is it that IANA and the Root Server operators seem generally averse to using DNSSEC in its current form?
When I talked to John Crain and Doug Barton in Suva at the APNIC meeting, they told me that they expected the root zone to be signed according to the current DNSSEC spec within 9 months. They were speaking for themselves, and not for IANA in any formal sense (but since IANA pretty much is John Crain and Doug Barton, it's not clear that IANA's position would be different). I detected no aversion to DNSSEC in its current form at all. The root server operators have voiced no concerns, either. In fact, several of the root server operators have been very active in defining the current spec of DNSSEC. Joe