ICANN/DNSO
DNSO Mailling lists archives

[ga]


<<< Chronological Index >>>    <<< Thread Index >>>

RE: [ga] Secure DNS


TLS anyone?

> -----Original Message-----
> From: Harald Alvestrand [mailto:Harald@Alvestrand.no]
> Sent: Monday, September 18, 2000 12:21 AM
> To: Rick H Wesson
> Cc: Kent Crispin; ga@dnso.org
> Subject: Re: [ga] Secure DNS
> 
> 
> At 07:38 15/09/2000 -0700, Rick H Wesson wrote:
> >ICANN, the registries and registrars are going to have to 
> work out how the
> >protocols (currently only RRP 1.1.0) will be updated to 
> manage the keys,
> >if they are to be put into the root, the keys will have to 
> be sent to the
> >registry somehow. The discussions on how to do this have not 
> even begun.
> 
> To be precise: What we don't have yet is a secure procedure 
> for a customer 
> of a registry to ask for its KEY records to be signed and get 
> the signed 
> records back.
> 
> A self-signed zone like the root has no problem that RRP is 
> relevant to.
> 
>                Harald
> 
> --
> Harald Tveit Alvestrand, alvestrand@cisco.com
> +47 41 44 29 94
> Personal email: Harald@Alvestrand.no
> 
> --
> This message was passed to you via the ga@dnso.org list.
> Send mail to majordomo@dnso.org to unsubscribe
> ("unsubscribe ga" in the body of the message).
> Archives at http://www.dnso.org/archives.html
> 
--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html



<<< Chronological Index >>>    <<< Thread Index >>>