[RSSAC Caucus] INPUT REQUESTED: Proposal for Future Root Zone KSK Rollovers
Davey Song
songlinjian at gmail.com
Mon Dec 16 03:34:05 UTC 2019
>
>
> then considerations should be proposed for using a longer KSK key length
> of 3072-bit RSA.
>
>
>
Larger size of key of RSA is not a right direction. If people think the
2048-bit RSA is strong enough, larger size of key will only result large
size of DNSKEY and the response. If you think we should strengthen it, why
not switch to ECC give a reasonable timeline in future.
Davey
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/rssac-caucus/attachments/20191216/2e08d59e/attachment.html>
More information about the rssac-caucus
mailing list