I promised to come back to the list with more details on two elements of our DNSSEC Practice Statement, which has taken a bit of time for research and other reasons. First, for those of you who have not had the time to get up to speed on DNSSEC I've written a brief introductory article on it for NZCS: http://www.nzcs.org.nz/newsletter/article/141 We will endeavour to put more articles up on our web site, but until then we publish our presentations on DNSSEC here: http://nzrs.net.nz/dns/dnssec If there are any specific resources that you would like us to consider publishing then please let me know. Next we come to the research Sebastian has conducted. The results of this are: - Of the 75 top level domains that have DNSSEC only 10 publish a DNSSEC Practice Statement like us. - Of those 10, none publish site locations. - Of those 10, none use trusted community representatives (TCRs) and we know of none from the other 65 that do. It seems clear that all other TLDs agree with us that what is in place for the root is inappropriate for a TLD. As we have agreed to change our key size to that used by the majority of other TLDs we are now fully in line with best practice as used by other DNSSEC signed TLDs. cheers Jay -- Jay Daley Chief Executive .nz Registry Services (New Zealand Domain Name Registry Limited) desk: +64 4 931 6977 mobile: +64 21 678840