[DNSOP] Re: Call for adoption: draft-fobser-dnsop-dnssec-keyrestore-01 (Ends 2026-02-27)

Tue, 17 Feb 2026 16:08:28 -0800 

I like this draft and hope that the WG adopts it.  Some zone operators are 
expected to develop emergency rollover plans and I think this would be a very 
good document to reference in such plans.

DW


> On Feb 13, 2026, at 4:07 AM, Peter Thomassen via Datatracker 
> <[email protected]> wrote:
> 
> This message starts a dnsop WG Call for Adoption of:
> draft-fobser-dnsop-dnssec-keyrestore-01
> 
> This Working Group Call for Adoption ends on 2026-02-27
> 
> Abstract:
>   This document describes the issues surrounding the handling of DNSSEC
>   private keys in a DNSSEC signer.  It presents operational guidance in
>   case a DNSSEC private key becoming inoperable.
> 
> Discussion Venues
> 
>   This note is to be removed before publishing as an RFC.
> 
>   Discussion of this document takes place on the Domain Name System
>   Operations Working Group mailing list ([email protected]), which is
>   archived at 
> https://secure-web.cisco.com/1USM5Y-0Ml0kgl3XeIOonp7TlqUpuG1FwKjnYKgflTm544DMwhrkwEMLukAEMjvUj7uj9_cRjwIq5UZiMlr4Y7K3B78S-5Sn-bPaNc_Yc4ULaDRcdOZ9kMrMQPH0GMc-LX7SKamd9ZVo1ZjqaOkSfPMGO9997fkXui-HSduPMNLxAHc-7306mBxtOaup-IlJhrL_ihNvId4xE8XduLe9WSuCjyK7LFv8_sabh8JluwjJPhm41vOmJrmUgwONFX5lVGavWNX0vmfvNVBQ6q1E4hYzFngKuxfwsi7kWSeqDS-tLkFgJjFI2g3AlO_-EC0j6/https%3A%2F%2Fmailarchive.ietf.org%2Farch%2Fbrowse%2Fdnsop%2F
> 
>   Source for this draft and an issue tracker can be found at
>   
> https://secure-web.cisco.com/1wimOYZVv0yXgMQTPOotKM2Mqyjakc9d1p0CAIlTbNVP0PP9N_VdxsBIbCyF1PnODgae04aoJNVLUbkPqY3LSN1P79Fa7I-IR3TBxeIljlq6Y-ECboP5rXT-CUsDUcrChSwXpikKH4mSpQqHRrpC5LRqEuUV1zXmDzZmEKZHMMOROcbc2K4co-WUxAYDNdSR0BLCdIGCS9_lgpCjwEvnhVYCQhfrkwCiknaKSd_N9l0cYoTrdL3sywCKaMynkTGf05pqb_CzXZEaBzCzwGrc2rCpt5C9Pj6n8aLEaNOyF6FlDjRI2B1X304cKjgJuugSP/https%3A%2F%2Fgithub.com%2Ffobser%2Fdraft-fobser-dnsop-dnssec-keyrecovery
> 
> Please reply to this message and indicate whether or not you support adoption
> of this Internet-Draft by the dnsop WG. Comments to explain your preference
> are greatly appreciated. Please reply to all recipients of this message and
> include this message in your response.
> 
> Authors, and WG participants in general, are reminded of the Intellectual
> Property Rights (IPR) disclosure obligations described in BCP 79 [2].
> Appropriate IPR disclosures required for full conformance with the provisions
> of BCP 78 [1] and BCP 79 [2] must be filed, if you are aware of any.
> Sanctions available for application to violators of IETF IPR Policy can be
> found at [3].
> 
> Thank you.
> [1] 
> https://secure-web.cisco.com/1XarIGg17gTIwaUBvCJMvaXGaGoMX1Hcg8wESUMKfYpj00LjH-5-1q1lhJ4GEg0Zpz0MXQQWXkieYgojdCQ2Vlu_jQt59V34ZgO5iThCgHfm4pNw0VTmUb8ME0cQQwRvTq-Sqe5ApLHbXwO8JCJJuGYiNN9uDPWRkfpDwzQiSvVKwc7YIXJ_UPSc3Spk8fGWvYJ6gNKsfsvRK94Q0qPAbrKmJ8Wf2IWc43CJS6qOJ4_nIIjq7XfbnpSMm1pB2wts5wMOFL4EWuz8lWh_azmPIU0AII2zlF0YaWNiQcTiIu4KrX2XxvNHiyAXwpE3u99WN/https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fbcp78%2F
> [2] 
> https://secure-web.cisco.com/1RtITdgqsV9hTitHFI2RxNopyU-dXqAOkLtz3-QmMdq-OiCjGQX_xbcOOUgDq_yPNfoNq5kYJ7esepO5r2Y25TxYN6i6iM-O00SE4_vrfYDAtkNWSDAbjEsoUxP3e0t3Q90COswBnLCeT_CygOM1jLtC1e6qXmwuVX3N1qaLR0WUYacKaeUEdeGyl3Ig9uYTlwz75kl5iiDM1zu7ka9LrZ7Xn4pXSaB97E-_L7YGYQGCGVb1u7pnsRfnQOChu1UBOpKSvv0JSpOiSwdxtdalrJLGQ8JfZkBfJaA0uOGt37KvQRzMnVpXrCim1ExwcI6VP/https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fbcp79%2F
> [3] 
> https://secure-web.cisco.com/1ZgbK95103FpoMC66uy6v9upBB6Zxrb0NSdmftgOFeHhrzQvxenUmnCp4Q25bHmabom-kveJti2UBsj8QlgZMo6JkjFVwPwhfhKU0YyzNgXScwBNAlKlgYqjRxsTVh6HujhaYrWvz6udzO93ghpxgNIWayVxWFv7_knTf172uunvae-jp9B5t1DLKnMD6JWbPAcxABOpxdKNJuV1S70wpeNPO2jTgmcgByqwB8RcC39-gQ6MrVdAKE6qnf7utqr21DkOVw8P4gzPwBCtpfTur4R9HZz-pOMTqIJuiX4RwR5Oe5B0L1mwDSSwpWsqS1aqv/https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Frfc6701%2F
> 
> The IETF datatracker status page for this Internet-Draft is:
> https://secure-web.cisco.com/1XkGdOoQQGtrJl3K7bdhVtpvo2y2nqy9iIKgLmHLI8nSmCa39NuE7u5GVVIZ4BdqzBypvVrQmtj5smQsXdEL4MeKclXH1sVdS5oYVsKWdrALTPawjQrZwnbDuYfNyiaLvDQ1nStA0J6O9mRM3FRf_QXSpasVxk7FtNT0YwN8QR0KpYBmhYJAXuVdwcl7P4riiuEW0VdVzpEYJOXw3N57jgwVthUVAq7L_1oZrPl1YioHRbrlmO3BzDssxEX5UE6RtjknU9ReopyRaCWOB_1yo8esKSuKxRjrU47KfaTy2t1ytAPp7PEJa1v2IVJxVmjE9/https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-fobser-dnsop-dnssec-keyrestore%2F
> 
> There is also an HTML version available at:
> https://secure-web.cisco.com/1t27t8QSJcXzvCEyNcBgjJj_LW8a1EW-W-0exVkIUJRQA015jX9d4iYkM9luEsB4fDwBXCEUd7aDh8STjrUhrYbPXGZ9NrrFRBeGX9rpcGJBOK8CqIXyLgxP6KbI-YyhtpEkMpTMKxej3ZDumaDlavz1feqMOQi7ieB7DW4JBhd0VwKRe12A3gLHZkqpjgVgpz-pLAvipn0h3CAFtWtIbEbQgh1YI2mX2RQoUwvNo2opmw0rJPqQM4nPQMB7dvhywhMmf0V4cY8q7fp2MNyO2fgZcqkVEYxuZALwvjO8oCAoUycEVz7RdsyDCTEr2FxLj/https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-fobser-dnsop-dnssec-keyrestore-01.html
> 
> A diff from the previous version is available at:
> https://secure-web.cisco.com/1bRGzrWJ_Y3vk6QHACQz4HETqoEvYhedwdxMJg8IhEmnPyPdPk029CpIgWmOSOeHy0ke_t5FldlgA2EIk3QtyYPIT-vFrrlEFLjjRzP57bYUwXNufzYLgE2rGyQ1hRoR-H1OJEmf6ob_KjUjOQzX0oHZI9BfzbZ4M7tg4JhSGdSDbfSN8ZWjZ8HdWLKISzQvK4voy-c5Vza3NdtiY9PUBAXBo5OqQx5cvjbueflqXDuaNcOFCDiSzeBk_A6JMGT2M0FzziU7OXCYTAYfzwKeldoJjYwpuUrh11F0GBPEif_bo9dY5lnOwMfTWRWTgExRZ/https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-fobser-dnsop-dnssec-keyrestore-01
> 
> _______________________________________________
> DNSOP mailing list -- [email protected]
> To unsubscribe send an email to [email protected]

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
DNSOP mailing list -- [email protected]
To unsubscribe send an email to [email protected]

Reply via email to