[ksk-change] Helping the panel name the reasons for the KSK rollover

Paul Hoffman paul.hoffman at vpnc.org
Mon Feb 23 16:27:21 UTC 2015

On Feb 23, 2015, at 7:21 AM, Kumar Ashutosh <askuma at microsoft.com> wrote:
> Wondering if the rare case of the root KSK being discovered to be compromised should also get a mention in that list.

That is part of "Operational practice for ICANN".

> Are not the others just precaution to avoid this case, or there are other steps when this happens?

Some people would argue that some of the other reasons are precautions to avoid KSK compromise, others would argue that they are unrelated.

--Paul Hoffman

More information about the ksk-rollover mailing list