On Fri, 2 Sep 2005, Harald Tveit Alvestrand wrote:
Flight of imagination: DNSSEC-Signed records (with the SIG/KEY chain in
additional data?) would seem to be one possibility to "prove" that the data
being presented was "legitimate" under DNS delegation rules, even when you
don't have a present connection to the Internet.
How can you verify the signature without an Internet connection with which
to fetch the key?
Why does it make sense to strive for globally-unique names when all that
matters is uniqueness on the local link?
Tony.
--
f.a.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
BISCAY: WEST 5 OR 6 BECOMING VARIABLE 3 OR 4. SHOWERS AT FIRST. MODERATE OR
GOOD.
_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf