Re: Proposal to use DNS as public key repository

The problem with public keys is not distribution... The distributions 
machanisms we have now work fine. it's getting people to generate 
validate and use them.

joelja

 On Thu, 11 Sep 2003 Valdis(_dot_)Kletnieks(_at_)vt(_dot_)edu wrote:

On Thu, 11 Sep 2003 22:27:25 EDT, Sergey Babkin 
<babkin(_at_)bellatlantic(_dot_)net>  said:

Hello,

I think that I've found an easy way to distribute the public keys:
put them into DNS. The records would look like:


Go to:

http://search.ietf.org/

query 'dns public keys'

Of particular interest:

For SSH public keys: 
http://www.ietf.org/internet-drafts/draft-ietf-secsh-dns-05.txt

IPSEC keying: 
http://www.ietf.org/internet-drafts/draft-ietf-ipseckey-rr-07.txt

See also RFCs 2536-2539,  and all the other DNSSEC RFCs.


-- 
-------------------------------------------------------------------------- 
Joel Jaeggli           Unix Consulting         
joelja(_at_)darkwing(_dot_)uoregon(_dot_)edu    
GPG Key Fingerprint:     5C6E 0104 BAF0 40B0 5BD3 C38B F000 35AB B67F 56B2

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

RE: Proposal to use DNS as public key repository, MDX Technologies Inc.

Next by Date:

Re: Exposing the security holes in all existing anti-spam techniques (was Re: You Might...), Shelby Moore

Previous by Thread:

Re: Proposal to use DNS as public key repository, Valdis . Kletnieks

Next by Thread:

Re: Proposal to use DNS as public key repository, Sergey Babkin

Indexes:

[Date] [Thread] [Top] [All Lists]