DNSO Archives: [ga]

ICANN/DNSO DNSO Mailling lists archives

[ga]

<<< Chronological Index >>> <<< Thread Index >>>

Re: [ga] Secure DNS

To: Rick H Wesson <wessorh@ar.com>
Subject: Re: [ga] Secure DNS
From: Harald Alvestrand <Harald@Alvestrand.no>
Date: Mon, 18 Sep 2000 09:20:57 +0200
Cc: Kent Crispin <kent@songbird.com>, ga@dnso.org
In-Reply-To: <Pine.LNX.4.10.10009150736170.1053-100000@loki.ar.com>
References: <4.3.2.7.2.20000915095044.026655d0@127.0.0.1>
Sender: owner-ga@dnso.org

At 07:38 15/09/2000 -0700, Rick H Wesson wrote:
>ICANN, the registries and registrars are going to have to work out how the
>protocols (currently only RRP 1.1.0) will be updated to manage the keys,
>if they are to be put into the root, the keys will have to be sent to the
>registry somehow. The discussions on how to do this have not even begun.

To be precise: What we don't have yet is a secure procedure for a customer 
of a registry to ask for its KEY records to be signed and get the signed 
records back.

A self-signed zone like the root has no problem that RRP is relevant to.

               Harald

--
Harald Tveit Alvestrand, alvestrand@cisco.com
+47 41 44 29 94
Personal email: Harald@Alvestrand.no

--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html

References:
- Re: [ga] Secure DNS
  - From: Harald Alvestrand <Harald@Alvestrand.no>
- Re: [ga] Secure DNS
  - From: Rick H Wesson <wessorh@ar.com>

<<< Chronological Index >>> <<< Thread Index >>>