Speaker
Description
One area of frequent challenge is how to fully automate DNSSEC provisioning and maintenance operations (e.g. initial provisioning, SEP key rollover and maintenance, and when required, inter-provider transfer). Steve Crocker and Shumon Huque have been running a panel on this topic for a number of years at the ICANN DNSSEC and Security workshops, and we'd like to share the collected experience from those workshops with the DNS-OARC community. This talk will provide a technical overview of this area, a summary of the state of DNSSEC automation adoption and implementation in the industry, and a preview of upcoming relevant protocol enhancements. It will also cover potential policy and contractual impediments that have hampered more rapid progress in this space for the generic Top Level Domains (gTLD), and prospects for improving the situation. Lastly, we will suggest some ways the OARC community can actively participate and help with these efforts.
