Re: Global PKI on DNS?

% I was wondering if the best system to build a global PKI wouldn't be the
% DNS system already in place?
% 
        As others have pointed out, the DNS already has the capability
        to store certs.  So you could use the DNS as a publication 
        method.  But is this the only thing a PKI needs?  How would
        one revolke a cert that was in the DNS?  How can you update
        -every- cached copy of the cert in question? 

        For this (among other) reason(s), the DNS can't really be 
        considered a PKI in any real sense.

-- 
--bill

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, David Conrad Re: Global PKI on DNS?, Fred Baker Re: Global PKI on DNS?, James Pullicino Re: Global PKI on DNS?, Franck Martin Re: Global PKI on DNS?, Michael Richardson Re: Global PKI on DNS?, Pekka Savola Re: Global PKI on DNS?, Simon Josefsson Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, Simon Josefsson Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, Bill Manning <= Re: Global PKI on DNS?, Bill Sommerfeld Re: Global PKI on DNS?, Ben Laurie Re: Global PKI on DNS?, Arne Ansper Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Michael StJohns Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Franck Martin

Previous by Date:	Re: Global PKI on DNS?, David Conrad
Next by Date:	Re: Global PKI on DNS?, Johnny Eriksson
Previous by Thread:	Re: Global PKI on DNS?, Eric A. Hall
Next by Thread:	Re: Global PKI on DNS?, Bill Sommerfeld
Indexes:	[Date] [Thread] [Top] [All Lists]