RFC 7050, "Discovery of the IPv6 Prefix Used for IPv6 Address Synthesis", November 2013Source of RFC: behave (tsv)
Errata ID: 5152
Reported By: Mark Andrews
Date Reported: 2017-10-11
Section IANA Conside says:
It should say:
8.x DNSSEC ipv4only.arpa MUST be insecurely delegated. This allows ISP's to modify / generate AAAA responses for ipv4only.arpa AAAA queries that will pass through unmodified caching servers as required by 8.1 (4).
The protocol as described does not work when there is a validating caching server in the resolution path.
IANA should have been instructed to insecurely delegate ipv4only.arpa. This allows ISP's to modify the
AAAA response without running foul of DNSSEC validation.