> -----Original Message-----
> From: Hongbo Shi [mailto:shi@goto.info.waseda.ac.jp]
...
> > > > OLD: [37] The protocol MUST work for all features of DNS, IPv4, and
> > > > IPv6.
> > > >
> > > > NEW: [2.6] The protocol MUST work for all features of DNS, IPv4, and
> > > > IPv6. The protocol MUST NOT allow an IDN to be returned to a requestor
> > > > that requests the IP-to-(old)-domain-name mapping service.
>
> NEWER: [2.6] The protocol MUST work for all freatures of DNS, IPv4, and IPv6.
> The protocol MUST NOT allow an IDN to be returned to a reauestor that
> requests the IP-to-(old)-domain-name mapping service. If there is only
> IDN exists, then DNSSEC MUST sign an ACE to avoid an empty answer
> section. [RFC2535]
I'm not sure I understand the last sentence there; the English
is too broken. However,
1) The term "ACE" is not (and should not be) defined in the
requirements doc. There is now the term "TES" ("Transfer
Encoding Syntax"), which is consistent with the terms used
in UTR 17.
2) The requirements document MUST NOT presuppose that there is
at all any "ACE" (TES) used for domain names. It does not
so far, and must not begin to do so.
/Kent Karlsson