In your letter dated Mon, 10 Nov 2025 20:22:28 +0000 you wrote: >On Mon, Nov 10, 2025 at 04:15:26PM +0100, Philip Homburg wrote: >> I don't know where the one algorithm at a time comes from. I'm perfectly >> fine with using PRIVATEDNS. I just don't want to update the hash functions. > >The hash functions themselves are the same. The numbers change, to indicate >that the key algorithm might be encoded in the DS rdata, but everything >else stays the same. If you're not using PRIVATE*, the existing algorithm >numbers are still fine. > >I'm not sure I understand your objection.
I'm looking at it from the point of view of implementations that currently have no support for PRIVATE* but may get used for PQC experiments. Adding new DS hash functions that need to be implemented by those experiments does not help for that use-case. _______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
