Jump to content

Trusted Community Representative: Difference between revisions

From ICANNWiki
Kjd (talk | contribs)
Correct a number of errors on how TCRs are described, link to up-to-date TCR list maintained by ICANN
Christiane (talk | contribs)
m Christiane moved page TCR to Trusted Community Representative over redirect: Standardize
 
(One intermediate revision by one other user not shown)
Line 1: Line 1:
'''TCR''' or '''Trusted Community Representative''' is a term given by [[ICANN]] to those who participate in ceremonies that manage the DNS Root Key Signing Key. The Root Key Signing Key is central to implementing [[DNSSEC]] for the Internet. Every TCR has been given credentials that are used to interact with the master key during key signing ceremonies. The first key signing ceremony took place on 16th June 2010.  
'''TCR''' or '''Trusted Community Representative''' is a term given by [[ICANN]] to those who participate in ceremonies that manage the DNS Root Key Signing Key. The Root Key Signing Key is central to implementing [[DNSSEC]] for the Internet. Each active TCR has been given credentials that are used to interact with devices that contain the Key during key signing ceremonies. The first key signing ceremony took place on 16th June 2010, and they are normally conducted four times a year.


[[ICANN]] uses the participation of TCRs to ensure trust in the process of managing the Root Key Signing Key. In normal operations, ICANN is unable to utilise the Root Key Signing Key without the participation of a number of TCRs called "Cryptographic Officers" to unlock the cryptographic devices that contain the private key. In a disaster-recovery scenario, another set of TCRs called "Recovery Key Share Holders" are needed to decrypt backups of private key.
[[ICANN]] uses the participation of TCRs to ensure broader community trust in the process of managing the Root Key Signing Key. In normal operations, ICANN is unable to utilise the Root Key Signing Key without the participation of a number of TCRs designated as "Cryptographic Officers" to unlock the cryptographic devices that contain the private key. In a disaster-recovery scenario, another set of TCRs called "Recovery Key Share Holders" are used to decrypt backups of the private key.


* [https://www.iana.org/dnssec/tcrs/ List of Trusted Community Representatives]
* [https://www.iana.org/dnssec/tcrs/ List of Trusted Community Representatives]

Latest revision as of 21:49, 26 June 2024

TCR or Trusted Community Representative is a term given by ICANN to those who participate in ceremonies that manage the DNS Root Key Signing Key. The Root Key Signing Key is central to implementing DNSSEC for the Internet. Each active TCR has been given credentials that are used to interact with devices that contain the Key during key signing ceremonies. The first key signing ceremony took place on 16th June 2010, and they are normally conducted four times a year.

ICANN uses the participation of TCRs to ensure broader community trust in the process of managing the Root Key Signing Key. In normal operations, ICANN is unable to utilise the Root Key Signing Key without the participation of a number of TCRs designated as "Cryptographic Officers" to unlock the cryptographic devices that contain the private key. In a disaster-recovery scenario, another set of TCRs called "Recovery Key Share Holders" are used to decrypt backups of the private key.