[arin-ppml] ARIN discontinuing DNSSEC capability to legacy holders

[Jo Rhett]

> I agree that we clearly need universal DNSSEC, and ARIN should not take actions that inhibit universal DNSSEC.

“Universal” DNSSEC where some parties are unauthenticated is worse than useless.

Validation and certification of the resource holder is critical. These two dozen entities are refusing to validate or certify themselves. They should not be authoritatively signed by ARIN.

-- 
Jo Rhett
Net Consonance : net philanthropy to improve open source and internet projects.