[ksk-rollover] ceremonies in April, and managing things less critical and the KSK.

Michael Richardson mcr+ietf at sandelman.ca
Sun Apr 5 21:01:23 UTC 2020

Russ Housley <housley at vigilsec.com> wrote:
    > IANA has emergency procedures that can be used to obtain the needed
    > three shares.  It is clear from the text that you quote, that emergency
    > planning was considered fro the start.  I assume that IANA will declare
    > such an emergency in the next few days, and then generate the next KSK
    > under those procedures.  As I understand it, the auditor will be able
    > to tell that the emergency procedure were properly followed.

Wow, I didn't think that we'd have to generate a new KSK.
I think it's enough to get a new ZSK signed, and my reading of the OARC email
says that this is what they are trying to do.

I guess that I'm right that the TCRs hold the keys to the safety deposit
I find it interesting that the staff-only process means drilling them out.
Should that room have a continuous video stream? :-)

Michael Richardson <mcr+IETF at sandelman.ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 487 bytes
Desc: not available
URL: <http://mm.icann.org/pipermail/ksk-rollover/attachments/20200405/672032f7/signature.asc>

More information about the ksk-rollover mailing list