Re: DNSSEC is NOT secure end to end

ietf

Re: DNSSEC is NOT secure end to end

2009-06-05 09:16:47

Shane Kerr wrote:

I think we all understand that it is possible to inject bad data into
the DNS at the parent.


What do you mean "the parent"?

Do you mean master zone file of the parent or some caching server
expected by a client to have parent data?

What I do not understand about this comment is how transport security
can help in that case. Can you please explain?


Explanation depends on your definition of "the parent".

                                                        Masataka Ohta

_______________________________________________
Ietf mailing list
Ietf(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: DNSSEC is NOT secure end to end (more tutorial than debating), (continued) Re: DNSSEC is NOT secure end to end (more tutorial than debating), Michael StJohns Re: DNSSEC is NOT secure end to end (more tutorial than debating), Mark Andrews Re: DNSSEC is NOT secure end to end (more tutorial than debating), Masataka Ohta Re: DNSSEC is NOT secure end to end (more tutorial than debating), Andrew Sullivan Re: DNSSEC is NOT secure end to end (more tutorial than debating), Masataka Ohta Re: DNSSEC is NOT secure end to end (more tutorial than debating), Mark Andrews Re: DNSSEC is NOT secure end to end (more tutorial than debating), Masataka Ohta DNSSEC was never designed for transport end to end security, Bill Manning DNSSEC is NOT secure end to end, Masataka Ohta Re: DNSSEC is NOT secure end to end, Shane Kerr Re: DNSSEC is NOT secure end to end, Masataka Ohta <= Re: DNSSEC is NOT secure end to end, Shane Kerr Re: DNSSEC is NOT secure end to end, Masataka Ohta Re: DNSSEC is NOT secure end to end, Shane Kerr Re: DNSSEC is NOT secure end to end, Masataka Ohta Re: [Asrg] DNSSEC is NOT secure end to end, Paul Wouters Re: DNSSEC is NOT secure end to end, Masataka Ohta Re: DNSSEC is NOT secure end to end, Bill Manning Re: [Asrg] DNSSEC is NOT secure end to end, Masataka Ohta Re: DNSSEC is NOT secure end to end, Marc Manthey Re: DNSSEC is NOT secure end to end, Masataka Ohta

Previous by Date:	Re: DNSSEC is NOT secure end to end, Andrew Sullivan
Next by Date:	Re: Gen-ART LC Review of draft-ietf-geopriv-http-location-delivery-14, Richard Barnes
Previous by Thread:	Re: DNSSEC is NOT secure end to end, Shane Kerr
Next by Thread:	Re: DNSSEC is NOT secure end to end, Shane Kerr
Indexes:	[Date] [Thread] [Top] [All Lists]