ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Name ownership and LLMNR (Re: Last Call: 'Linklocal Multicast Name Resolution...)

2005-09-02 07:08:05
from [Harald Tveit Alvestrand] [Permanent Link] 


--On 2. september 2005 12:46 +0100 Tony Finch <dot(_at_)dotat(_dot_)at> wrote:


If you have the zone key, you can do the verification offline.


How can you be expected to have the zone key of some random name that just
turned up on your network?


you can always ask the guy for the zone key (and its signature).
you have to get a certificate chain that ends up at a root key you trust, of course.
Reducing the problem to a previously unsolved problem.... but if you only care about whether or not it's locally unique, you don't CARE whether it's authentic or not, so you don't have to fetch anything....

Attachment: pgpNJlyH0cIEL.pgp
Description: PGP signature

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/ietf
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Last Call: 'Linklocal Multicast Name Resolution (LLMNR)' to Proposed Standard, JFC (Jefsey) Morfin
Next by Date:  Re: Last Call: 'Linklocal Multicast Name Resolution (LLMNR)' to Proposed Standard, Daniel Karrenberg
Previous by Thread:  Re: Name ownership and LLMNR (Re: Last Call: 'Linklocal Multicast Name Resolution...), Tony Finch
Next by Thread:  Re: Name ownership and LLMNR (Re: Last Call: 'Linklocal Multicast Name Resolution...), Masataka Ohta
Indexes:  [Date] [Thread] [Top] [All Lists]