PR #564 adds support for using TSIG with Cascade.
One known issue that was noted on that PR was:
It lacks verification that the right TSIG key was used to sign a received NOTIFY. It does verify that a known TSIG key was used, but cannot verify that only the right key was used rather than any key in our key store. This is due to a limitation of the underlying NotifyMiddlewareSvc from the domain crate which invokes a callback when a NOTIFY is received but fails to pass the TSIG key used to the callback defined in Cascade.
PR #564 adds support for using TSIG with Cascade.
One known issue that was noted on that PR was: