[governance] Re: Draft Workshop Report -- DNS forum @ Athens
McTim
dogwallah at gmail.com
Tue Nov 7 00:21:10 EST 2006
On 11/7/06, Brenden Kuerbis <bnkuerbi at syr.edu> wrote:
>
> Stephane Bortzmeyer wrote:
> > On Thu, Nov 02, 2006 at 01:37:08AM -0500,
> > Milton Mueller <mueller at syr.edu> wrote
> > a message of 70 lines which said:
> >
> >
> >> It is possible to implement DNSSEC without signing the root, but
> >> that would create only "islands of trust" in specific TLDs,
> >>
> >
> > This is no longer true since DLV
> > (http://www.isc.org/index.pl?/about/press/?pr=2006032700).
> >
>
> Yes, it is correct that DLV (DNS Lookaside Validation) makes it
> technically possible to deploy DNSSEC
s/DNSSECbis/DNSSEC
without signing the actual root
> zone file.
http://www.isc.org/index.pl?/pubs/tn/index.pl?tn=isc-tn-2006-1.html:
"This is an early deployment aid, not intended to permanently replace the
"certification follows delegation" model, or to scale to the size of the
Internet. Once the DNSSEC community has matured, the methods described in
this memo are not expected to be of any further use."
--
Cheers,
McTim
$ whois -h whois.afrinic.net mctim
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.igcaucus.org/pipermail/governance/attachments/20061107/11be338f/attachment.htm>
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: message-footer.txt
URL: <http://lists.igcaucus.org/pipermail/governance/attachments/20061107/11be338f/attachment.txt>
More information about the Governance
mailing list