Re: US government mandates? use of DNSSEC by federal agencies

• From: David Conrad
• Date: Wed Aug 27 19:16:49 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

Right. The real questions are the clients and the trust anchor -- what
root key do you support?

A distributed one. I personally don't really see an issue with
downloading a public key for every TLD out there. These keys could come
in a pack even by an OS distribution, nicely PGP signed et all...

Regards,
-drc

• References:
  • Re: US government mandates? use of DNSSEC by federal agencies Michael Thomas
  • Re: US government mandates? use of DNSSEC by federal agencies Kevin Oberman
  • Re: US government mandates? use of DNSSEC by federal agencies Steven M. Bellovin
  • Re: US government mandates? use of DNSSEC by federal agencies Jeroen Massar

• Prev by Date: Re: interger to I P address
• Next by Date: Re: US government mandates? use of DNSSEC by federal agencies
• Date Index
• Thread Index
• Author Index
• Historical