DNSSEC. Registry Operator shall sign its TLD zone files implementing Domain Name System Security Extensions (“DNSSEC”). During the Term, Registry Operator shall comply with RFCs 4033, 4034, 4035, 4509 and their successors, and follow the best practices described in RFC 4641 and its successors. If Registry Operator implements Hashed Authenticated Denial of Existence for DNS Security Extensions, it shall comply with RFC 5155 and its
Appears in 1 contract
Sources: Registry Agreement
DNSSEC. If the Registry Operator shall sign signs its TLD zone files implementing Domain Name System Security Extensions (“DNSSEC”). During the Term, Registry Operator it shall comply with RFCs 4033, 4034, 4035, 4509 and their successors, and follow the best practices described in RFC 4641 and its successors. If the Registry Operator implements Hashed Authenticated Denial of Existence for DNS Security Extensions, it shall comply with RFC 5155 and itsits successors. The Registry shall accept public-key material from child domain names in a secure manner according to industry best practices.
Appears in 1 contract
Sources: CCTLD Registry Agreement