ICANN/DNSO
DNSO Mailling lists archives

[ga-full]


<<< Chronological Index >>>    <<< Thread Index >>>

RE: [ga] Secure DNS


At 08:01 PM 9/18/00 +0200, Harald Alvestrand wrote:
>Not the best place to hash this out....but TLS tells you only that it's 
>hard to interfere with the transmission, not who it came from....for that 
>you need a public key infrastructure of some kind (TLS with X.509 
>certificates is defined, but not used much for client authentication).

once a private channel is established by TLS, simple password exchange 
would be sufficient for authentication.  Public key-based certs would not 
be need, no?

d/

--
This message was passed to you via the ga-full@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-full" in the body of the message).
Archives at http://www.dnso.org/archives.html



<<< Chronological Index >>>    <<< Thread Index >>>