[Opendnssec-develop] RE: User survey on upcoming features

Matthijs Mekking matthijs at nlnetlabs.nl
Tue Jun 11 12:20:57 UTC 2013

Hi Sara,

Some comments, based on people I have spoke on the CENTR last week

On 06/11/2013 12:21 PM, Sara Dickinson wrote:
> Hi All, 
> Following all the discussions at RIPE on 'what users really want' after 2.0 I was planning to set up a user survey so users could vote on what features would be most useful to them. The point would be to help us understand the users' perspective better and prioritise _the order_ we do these developments in. 
> I've put a list together, based on the current roadmap and specific user requests I'm aware of:
> Interface/Usability
> --------------------------
> Enhancements to DS handling (e.g. hook for notification of DS generation, OPENDNSSEC-295, ds-seen --all option)
> Improvements to existing API (e.g. more consistent, better output, OPENDNSSEC-404)
> New, unified control API
> Alternative text based front end to update configuration options (currently stored in XML)
> Alternative graphical front end to update configuration options (currently stored in XML)
> Improved Monitoring (e.g. email notifications of events, daily email summary, 'ods summary' command)
> Key handling
> -----------------------
> Support multiple key rollover methods
> Support policy rollover
> Support algorithm rollover

One of the things that was discussed during the CENTR was ECDSA and why
nobody it is using it. One of the key points is that vendors and tools
are lacking support. So ECDSA support in PKCS#11 and the possibility to
switch algorithms is something which I think is important.

> Allow KSK and ZSK to be the same key
> Offline KSK
> Signer
> ---------
> Dynamic update adapter

Two organizations mentioned on the hallway that they are waiting for
this functionality.

> Database adapter
> Plugin adapter

Database adapter and Plugin adapter are two different names for the same

> Incremental transition from/to NSEC to/from NSEC3
> Reduced Memory usage
> Other
> ---------
> Support for GOST/DSA

ECDSA that is. See comment above.

Best regards,

> Support for Postgres DB backend 
> Support for Views (OPENDNSSEC-232)
> I plan to ask users to rate each feature as
> - Blocking/problematic in our use of OpenDNSSEC
> - Really want this feature right now please
> - Would use if available
> - Not important to us
> and ask for anything not on the list that they really want. 
> Did I miss anything? Comments?
> Sara._______________________________________________
> Opendnssec-develop mailing list
> Opendnssec-develop at lists.opendnssec.org
> https://lists.opendnssec.org/mailman/listinfo/opendnssec-develop

More information about the Opendnssec-develop mailing list