Zone KEY RRSet Signing Procedure

Document Type Expired Internet-Draft (dnssec WG)
Authors Ólafur Guðmundsson  , Edward Lewis 
Last updated 1997-11-19
Stream Internet Engineering Task Force (IETF)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Under the security extensions to DNS, as defined in RFC 2065 and RFC 2137, a secured zone will have a KEY RRSet associated with the domain name at the apex of the zone. This document covers the manner in which this RRSet is generated, signed, and inserted into the name servers.


Ólafur Guðmundsson (
Edward Lewis (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)