Re: Global PKI on DNS?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Global PKI on DNS?

To: "John Stracke" <jstracke at incentivesystems.com>
Subject: Re: Global PKI on DNS?
From: Keith Moore <moore at cs.utk.edu>
Date: Wed, 12 Jun 2002 17:57:52 -0400
Cc: ietf <ietf at ietf.org>, isdf at isoc.org, Key Distribution <keydist at CAFAX.SE>, openssl-users at openssl.org
In-reply-to: (Your message of "Wed, 12 Jun 2002 16:13:51 EDT.") <OF0F8D4CAB.B14112E7-ON85256BD6.006EB01F@incentivesystems.com>
Sender: owner-ietf at ietf.org

> >We're already trusting chains of signficant length (i.e. DNS delegation)
> >with no decent verification at all.
> 
> That's a good point.  PKI on DNS might not be the most trustworthy system
> imaginable, but it would probably be an improvement over no PKI.  Provided
> it doesn't break DNS...

and also provided people don't say "hey, now there's a PKI, so I really can 
trust it!"

Keith

References:
- Re: Global PKI on DNS?
  - From: John Stracke

Prev by Date: Re: Modems
Next by Date: Re: Global PKI on DNS?
Previous by thread: Re: Global PKI on DNS?
Next by thread: RE: Global PKI on DNS?
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.