Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.

SAC107 was published on 3 December 2019. All SSAC publications can be found at

View file

Recommendation DescriptionCurrent Phase
Recommendation 1The Internet Corporation for Assigned Names and Numbers (ICANN) Security and Stability Advisory Committee (SSAC) submits the following comments in response to the National Institute of Standards (NIST) request for feedback on its post-quantum cryptography second-round candidate algorithms.

Our comments concern the role that new cryptographic algorithms would have in the implementation of DNSSEC. In general, implementing quantum-resistant cryptography in DNSSEC should be straightforward. However, an issue that we foresee, given that there are some architectural size limits in the DNS, is that some of the candidate algorithms may not be supportable in the DNS.