[discussion] NXDOMAIN in unsigned zones does not allow other data at the same name

[pspacek]

Specification: Weaker variant of https://tools.ietf.org/html/rfc8020. NXDOMAIN answer in unsigned zones does not allow other data at names which generated the NXDOMAIN answer.

Expected advantage: Better cache efficiency and resource consumptions for operators, better latency for end users.

Expected disadvantage: None

Expected implementation complexity for software developers: Small

Expected non-compliance: ? TBD. Some of known big offenders like Akamai already fixed their setups but more data is needed.

Research to confirm assumptions: TBD