ietf
[Top] [All Lists]

Re: Name ownership and LLMNR (Re: Last Call: 'Linklocal Multicast Name Resolution...)

2005-09-02 04:26:11
In message 
<Pine(_dot_)LNX(_dot_)4(_dot_)60(_dot_)0509021204280(_dot_)13347(_at_)hermes-1(_dot_)csi(_dot_)cam(_dot_)ac(_dot_)uk>,
 Tony Fin
ch writes:
On Fri, 2 Sep 2005, Harald Tveit Alvestrand wrote:

Flight of imagination: DNSSEC-Signed records (with the SIG/KEY chain in
additional data?) would seem to be one possibility to "prove" that the data
being presented was "legitimate" under DNS delegation rules, even when you
don't have a present connection to the Internet.

How can you verify the signature without an Internet connection with which
to fetch the key?

If you have the zone key, you can do the verification offline.

Why does it make sense to strive for globally-unique names when all that
matters is uniqueness on the local link?

Bellovin's Laws of Networking:
        1       Networks interconnect.
        2       Networks *always* interconnect.
        3       Interconnection happens from the edges, not the center

What's going to happen to your link-local uniqueness when someone adds 
a bridge? 

                --Steven M. Bellovin, http://www.cs.columbia.edu/~smb



_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf

<Prev in Thread] Current Thread [Next in Thread>