DNSO Archives: [ga-full]

ICANN/DNSO DNSO Mailling lists archives

[ga-full]

<<< Chronological Index >>> <<< Thread Index >>>

RE: [ga] Secure DNS

To: Harald Alvestrand <Harald@Alvestrand.no>
Subject: RE: [ga] Secure DNS
From: Dave Crocker <dhc2@dcrocker.net>
Date: Tue, 19 Sep 2000 09:14:23 -0700
Cc: "Roeland M.J. Meyer" <rmeyer@mhsc.com>, Rick H Wesson <wessorh@ar.com>, Kent Crispin <kent@songbird.com>, ga@dnso.org
In-Reply-To: <4.3.2.7.2.20000918195954.05ed2468@127.0.0.1>
References: <1148622BC878D411971F0060082B042C36E3@hawk.lvrmr.mhsc.com>
Sender: owner-ga-full@dnso.org

At 08:01 PM 9/18/00 +0200, Harald Alvestrand wrote:
>Not the best place to hash this out....but TLS tells you only that it's 
>hard to interfere with the transmission, not who it came from....for that 
>you need a public key infrastructure of some kind (TLS with X.509 
>certificates is defined, but not used much for client authentication).

once a private channel is established by TLS, simple password exchange 
would be sufficient for authentication.  Public key-based certs would not 
be need, no?

d/

--
This message was passed to you via the ga-full@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga-full" in the body of the message).
Archives at http://www.dnso.org/archives.html

References:
- RE: [ga] Secure DNS
  - From: "Roeland M.J. Meyer" <rmeyer@MHSC.com>
- RE: [ga] Secure DNS
  - From: Harald Alvestrand <Harald@Alvestrand.no>

<<< Chronological Index >>> <<< Thread Index >>>