DNSSEC Key Timing Considerations Follow-Up

Document Type Expired Internet-Draft (individual)
Author Matthijs Mekking 
Last updated 2011-07-08
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes issues surrounding the timing of events related to DNSSEC policy. It presents timelines for various key rollovers and DNSSEC policy changes regarding the key signing scheme. It explicitly identifies the relationships between the various parameters affecting the rollover process. This document updates [draft-ietf-dnsop-dnssec-key-timing] [MM: If approved] as it covers timelines for key rollovers in more detail and it covers additional key rollover scenarios, including algorithm rollover and single type key rollovers.


Matthijs Mekking (matthijs@nlnetlabs.nl)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)