DNSO Archives: [ga-full]

ICANN/DNSO DNSO Mailling lists archives

[ga-full]

<<< Chronological Index >>> <<< Thread Index >>>

RE: [ga] Secure DNS

To: "\"Roeland M.J. Meyer\" <rmeyer@MHSC.com>Rick H Wesson" <wessorh@ar.com>
Subject: RE: [ga] Secure DNS
From: Harald Alvestrand <Harald@Alvestrand.no>
Date: Wed, 20 Sep 2000 15:29:41 -0400
Cc: Kent Crispin <kent@songbird.com>, ga@dnso.org
In-Reply-To: <1148622BC878D411971F0060082B042C36E4@hawk.lvrmr.mhsc.com>
Sender: owner-ga-full@dnso.org

At 05:41 18/09/2000 -0700, Roeland M.J. Meyer wrote:
>Kinda, TLS is for third-party verification of the cert. It both
>authenticates and encrypts. The downside is that it is server-centric.
>Unlike SSL, which is satisfied with a simple signature, TLS actually
>goes to the CA and checks the cert.

this is a property of the implementation, not of the protocol.
TLS *IS* SSL version 3.0 with the owner names changed and some minor tweaks 
to the list of cryptoalgorithms.

--
Harald Tveit Alvestrand, alvestrand@cisco.com
+47 41 44 29 94
Personal email: Harald@Alvestrand.no

--
This message was passed to you via the ga-full@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-full" in the body of the message).
Archives at http://www.dnso.org/archives.html

Follow-Ups:
- RE: [ga] Secure DNS
  - From: Jefsey Morfin <jefsey@wanadoo.fr>

References:
- RE: [ga] Secure DNS
  - From: "Roeland M.J. Meyer" <rmeyer@MHSC.com>

<<< Chronological Index >>> <<< Thread Index >>>