{"draft":"draft-ietf-dnsop-rfc4641bis-13","doc_id":"RFC6781","title":"DNSSEC Operational Practices, Version 2","authors":["O. Kolkman","W. Mekking","R. Gieben"],"format":["ASCII","HTML"],"page_count":"71","pub_status":"INFORMATIONAL","status":"INFORMATIONAL","source":"Domain Name System Operations","abstract":"This document describes a set of practices for operating the DNS with\r\nsecurity extensions (DNSSEC).  The target audience is zone\r\nadministrators deploying DNSSEC.\r\n\r\nThe document discusses operational aspects of using keys and\r\nsignatures in the DNS.  It discusses issues of key generation, key\r\nstorage, signature generation, key rollover, and related policies.\r\n\r\nThis document obsoletes RFC 4641, as it covers more operational\r\nground and gives more up-to-date requirements with respect to key\r\nsizes and the DNSSEC operations.","pub_date":"December 2012","keywords":["DNSSEC","operational","key rollover"],"obsoletes":["RFC4641"],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC6781","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc6781"}