nanog mailing list archives
Re: DNSSEC Best Practices
From: Mark Tinka <mark@tinka.africa>
Date: Wed, 28 Apr 2021 12:02:18 +0200
On 4/28/21 11:51, Tony Finch wrote:
Yes. I recommend p256 because the security advantages of p384 are not significant enough to justify the increased costs in space (packet size) and time.
Both 13 and 14 are already smaller than 8 (which is the most widely deployed algorithm today).
512 bits vs 768 bits is not going to break the Internet. Mark.
Current thread:
- DNSSEC Best Practices Eric Germann via NANOG (Apr 27)
- Re: DNSSEC Best Practices Arne Jensen (Apr 27)
- Re: DNSSEC Best Practices Mark Tinka (Apr 28)
- Re: DNSSEC Best Practices Tony Finch (Apr 28)
- Re: DNSSEC Best Practices Mark Tinka (Apr 28)
- Re: DNSSEC Best Practices Robert Story (Apr 28)
- Re: DNSSEC Best Practices Arne Jensen (Apr 27)
- Re: DNSSEC Best Practices Ca By (Apr 27)
- Re: DNSSEC Best Practices Mark Tinka (Apr 28)