On Thu, 28 Feb 2008, Stephane Bortzmeyer wrote:
On Wed, Feb 27, 2008 at 12:28:40AM +0200, Miika Komu <miika at iki.fi> wrote a message of 39 lines which said:While waiting for changes to libc, the DNS interaction can be accomplished by running a DNS proxy in the localhost that can do the HIP magic.Hold on, I did not want to actually use the HIP protocol. I was just thinking aloud about wether it was possible to use Host Identities in an ordinary application (regardless of wether HIP was running or not).
A research proposal called "Unmanaged Internet Protocol" does something like this:
http://www.pdos.lcs.mit.edu/papers/uia:osdi06.pdfThe "personal identitities" of UIA are really just an extension of Host Identities as experiments in another previous year publication indicate:
http://www.iki.fi/miika/docs/f17-komu.pdf
For instance, suppose we were redesigning SSH from scratch, would it be possible / would it make sense to use Host Identities instead of SSH-specific keys?
IMHO yes. -- Miika Komu http://www.iki.fi/miika/