Re: Global PKI on DNS?

Somebody (I
think it was Keith) suggested earlier in this thread that nobody should
be trusted with the single PKI root. Maybe the same sentiment applies to
DNS roots, as well??


no, it doesn't follow at all.    you need a unique root (of some kind) to 
prevent name conflicts - mutual self-interest among competitors does not
suffice to do that.  

OTOH a distinguished root CA is a Very Bad Idea.

Keith

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Steven M. Bellovin Re: Global PKI on DNS?, Mats Dufberg Re: Global PKI on DNS?, David Conrad Re: Global PKI on DNS?, Steven M. Bellovin Re: Global PKI on DNS?, David Conrad Re: Global PKI on DNS?, Johnny Eriksson Re: Global PKI on DNS?, James Seng RE: Global PKI on DNS?, Christian Huitema Re: Global PKI on DNS?, John Stracke Re: Global PKI on DNS?, Peter Deutsch Re: Global PKI on DNS?, Keith Moore <= Re: Global PKI on DNS?, Peter Deutsch Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Mark . Andrews Re: Global PKI on DNS?, John Stracke Re: Global PKI on DNS?, Peter Deutsch Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, David Conrad Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, David Conrad

Previous by Date:	Re: Global PKI on DNS?, Eric A. Hall
Next by Date:	RE: modems, Nepple, Bruce
Previous by Thread:	Re: Global PKI on DNS?, Peter Deutsch
Next by Thread:	Re: Global PKI on DNS?, Peter Deutsch
Indexes:	[Date] [Thread] [Top] [All Lists]