Hallam-Baker, Phillip wrote:
Some comments:
1) BGP Security Concerns
The primary security concern that needs to be addressed is the
incentive to hijack legitimate IP address blocks via BGP spoofing.
Is this the same IP spoofing issue being addressed in the end of this
message:
http://www1.ietf.org/mail-archive/working-groups/asrg/current/msg08549.html
2) DNS Security Concerns
The DNS statement is incorrect. The DNS does have security, it just
is not very good and it is not cryptographically based.
Doesn't this cover this:
"2.3.2 Increased incentive for DNS cracks
LMAP will also have the effect of increasing the incentives
for spammers to crack and subvert DNS servers (in order to
spoof receivers doing LMAP checks against the DNS database).
"
Yakov
-------
Yakov Shafranovich / asrg <at> shaftek.org
SolidMatrix Technologies, Inc. / research <at> solidmatrix.com
"Some lies are easier to believe than the truth" (Dune)
-------
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg