@misc{rfc4956,
    series =    {Request for Comments},
    number =    4956,
    howpublished =  {RFC 4956},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC4956},
    url =       {https://www.rfc-editor.org/info/rfc4956},
    author =    {Mark Kosters and Roy Arends and David Blacka},
    title =     {{DNS Security (DNSSEC) Opt-In}},
    pagetotal = 17,
    year =      2007,
    month =     jul,
    abstract =  {In the DNS security (DNSSEC) extensions, delegations to unsigned subzones are cryptographically secured. Maintaining this cryptography is not always practical or necessary. This document describes an experimental "Opt-In" model that allows administrators to omit this cryptography and manage the cost of adopting DNSSEC with large zones. This memo defines an Experimental Protocol for the Internet community.},
}