Re: Global PKI on DNS?

"John Stracke" <jstracke(_at_)incentivesystems(_dot_)com> writes:

The CERT extension to DNS allows to place there a URI, a URI is smaller

than

a cert and stays in a udp packet.


Bootstrap problem: how can you trust the results of the URI?


The URI can contain a hash (fingerprint) of the target data.  C.f. TLS
extensions document.

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Eric A. Hall Re: Global PKI on DNS?, Vernon Schryver Re: Global PKI on DNS?, John Stracke Re: Global PKI on DNS?, Franck Martin Re: Global PKI on DNS?, Keith Moore RE: Global PKI on DNS?, Franck Martin RE: Global PKI on DNS?, John Stracke Re: Global PKI on DNS?, Simon Josefsson <= Re: Global PKI on DNS?, Richard Levitte - VMS Whacker RE: Global PKI on DNS?, Christian Huitema RE: Global PKI on DNS?, VILLARREAL, STEVE (SBC-MSI) RE: Global PKI on DNS?, Franck Martin Re: RE: Global PKI on DNS?, Chris Evans Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Einar Stefferud Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent

Previous by Date:	Re: Global PKI on DNS?, Stephen Kent
Next by Date:	Re: Global PKI on DNS?, Richard Levitte - VMS Whacker
Previous by Thread:	RE: Global PKI on DNS?, John Stracke
Next by Thread:	Re: Global PKI on DNS?, Richard Levitte - VMS Whacker
Indexes:	[Date] [Thread] [Top] [All Lists]