[Opendnssec-develop] Enforcer engine design v2 work breakdown
Matthijs Mekking
matthijs at NLnetLabs.nl
Thu Jun 9 13:36:54 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 06/07/2011 11:43 PM, Yuri Schaeffer wrote:
> Code
> -------------
> - Figure out how the user indicates which rollover strategy it wants in
> the kasp.xml (input request for all of you).
I would suggest something in the line of this:
- --- kasp.xml.in (revision 5201)
+++ kasp.xml.in (working copy)
@@ -50,6 +50,7 @@
<!-- Parameters for KSK only -->
<KSK>
+ <RolloverType>DoubleDS</RolloverType>
<Algorithm length="2048">8</Algorithm>
<Lifetime>P1Y</Lifetime>
<Repository>SoftHSM</Repository>
@@ -57,6 +58,7 @@
<!-- Parameters for ZSK only -->
<ZSK>
+ <RolloverType>Prepublication</RolloverType>
<Algorithm length="1024">8</Algorithm>
<Lifetime>P30D</Lifetime>
<Repository>SoftHSM</Repository>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJN8Mx2AAoJEA8yVCPsQCW5zOMIAJpX/AtngPfZ0oYsxD/p7klf
Sg5+gAdiay/sTbjtSRbuJkbFNXJIBkSFDnfCwgi77o6qtZmBjiOCXWfi/cEYNCuW
5XURUc55a0ihEUyDq4GXgfh1JlTBTvYuSyT6gsedPOigv0VbdoCXuX1XhDpCZPTi
aXbZGuux/S65SxggiedOikbfHVn3sPAeDfXXeMAE11Q63baSChJ0/WETtbOIx6E4
QwMBo129VpxV+pOichg8VmgnG6wv+S4/Zt8V8ZyF/jzj0+esjGVqItbeuO217EJp
fuOY2TKvuxWMU1k/ZBRNLGZqTniqOdCRVI5dkCrJY8nklNeI6URzYINDWIcbZQc=
=8OIo
-----END PGP SIGNATURE-----
More information about the Opendnssec-develop
mailing list