ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning)

2014-06-17 13:16:46
from [John Levine] [Permanent Link] 
Of course, my point is that clearly DANE is better than nothing and DNSSEC
makes it better.  I don't see what leaving out DNSSEC adds holes that don't
already exist worse without DANE.


The baseline for comparison is certs signed by an authority, not the
DNS.

R's,
John

_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long
Next by Date:  Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Peter Bowen
Previous by Thread:  Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Brandon Long
Next by Thread:  Re: [ietf-smtp] DANE without DNSSEC (was: certificate pinning), Peter Bowen
Indexes:  [Date] [Thread] [Top] [All Lists]