ICANN/DNSO
DNSO Mailling lists archives

[ga-full]


<<< Chronological Index >>>    <<< Thread Index >>>

Re: [ga] Secure DNS


At 07:38 15/09/2000 -0700, Rick H Wesson wrote:
>ICANN, the registries and registrars are going to have to work out how the
>protocols (currently only RRP 1.1.0) will be updated to manage the keys,
>if they are to be put into the root, the keys will have to be sent to the
>registry somehow. The discussions on how to do this have not even begun.

To be precise: What we don't have yet is a secure procedure for a customer 
of a registry to ask for its KEY records to be signed and get the signed 
records back.

A self-signed zone like the root has no problem that RRP is relevant to.

               Harald

--
Harald Tveit Alvestrand, alvestrand@cisco.com
+47 41 44 29 94
Personal email: Harald@Alvestrand.no

--
This message was passed to you via the ga-full@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-full" in the body of the message).
Archives at http://www.dnso.org/archives.html



<<< Chronological Index >>>    <<< Thread Index >>>