I want to hereby congratulate the .SE registry for a successful move to the epp protocol on March 9. Sure, I have my personal view on what could be done different, but overall, it ended up being a smooth transition.
Some thing to think about for others that make this move (some things .SE did right, some things could have been better etc, so this is not a list of complaints on .SE, just a list…):
The really interesting part have though been to see how epp ties for real in with DNS and specifically DNSSEC. This is where my main interest is. I have rewritten all key management software I have been using to use epp instead of the email interface the registry used before. And it works (not so strange). Next problem of course is that the registries that can use epp are not (always) the same organisations that run DNS. How are DNS operators to communicate with the registrars? Use epp there as well, or something simplified? Dynamic updates I am testing using http as the access mechanism, tying it together with DNSSEC so that the zones are resigned after they are updated.
But the overall architecture is complicated, and I am happy I have spent so much time thinking about it. And actually doing things. I dislike myself people just talking, and not doing, so having things working make me very happy.
Now it is time to start working with plain DNS operators, and think about what to do next.