[Opendnssec-user] Why do we need standby keys?

Rickard Bellgrim rickard.bellgrim at iis.se
Thu Jul 8 12:08:01 UTC 2010

On 8 jul 2010, at 13.34, Mathieu Arnold wrote:

> the only emergency rollover I expect is
> broken key through crypto analysis, which, is of course, the hardest one to
> figure out :-)


Since you will never know if someone have broken the key through crypto analysis, would it be sufficient if you do regular key rollovers? Thus no need for standby keys in your case.

// Rickard

More information about the Opendnssec-user mailing list