Re: Global PKI on DNS?

If explicit trust is required I agree, but in the DNS case we already
have a singly-rooted tree that everyone relies upon. if you want to
use the word "trust" then we all trust the root for DNS, but I think
the term is not applicable here.


I think the word "trust" accurately reflects the situation.

People do trust the current DNS to some degree.  The danger of a DNS-based 
PKI is that people will invest far more trust in the DNS PKI than is 
warranted, and/or that the root and/or TLD servers will abuse that trust.

Recent history demonstrates that such abuse is likely.

Keith

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Global PKI on DNS?, (continued) Re: Global PKI on DNS?, Richard Levitte - VMS Whacker RE: Global PKI on DNS?, Christian Huitema RE: Global PKI on DNS?, VILLARREAL, STEVE (SBC-MSI) RE: Global PKI on DNS?, Franck Martin Re: RE: Global PKI on DNS?, Chris Evans Re: Global PKI on DNS?, Valdis . Kletnieks Re: Global PKI on DNS?, Einar Stefferud Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore <= Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore Re: Global PKI on DNS?, Stephen Kent Re: Global PKI on DNS?, Keith Moore

Previous by Date:	Re: Modems, Matt Crawford
Next by Date:	Re: Global PKI on DNS?, Keith Moore
Previous by Thread:	Re: Global PKI on DNS?, Stephen Kent
Next by Thread:	Re: Global PKI on DNS?, Stephen Kent
Indexes:	[Date] [Thread] [Top] [All Lists]