ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [DNSOP] Practical issues deploying DNSSEC into the home.

2013-09-12 14:50:09
from [Ted Lemon] [Permanent Link] 
On Sep 12, 2013, at 3:16 PM, "Dickson, Brian" 
<bdickson(_at_)verisign(_dot_)com> wrote:

Excluding the direct methods of acquisition, let us consider the level of
effort involved in recreating the root key, by brute force.


I think we can assume that they would use some fairly subtle attack to get the 
key, and would not brute force it, unless they know something we do not.   
E.g., they might capture it using TEMPEST-style or other EMI-based attacks, or 
by buying a sufficiency of key holders (which I suspect would be a lot harder 
at the moment, but might not always be as hard).
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [sidr] Last Call: <draft-ietf-sidr-bgpsec-threats-06.txt> (Threat Model for BGP Path Security) to Informational RFC, George, Wes
Next by Date:  Re: Piling on [Gen-art] Gen-ART review of draft-kaplan-insipid-session-id-03.txt, James Polk
Previous by Thread:  Re: [DNSOP] Practical issues deploying DNSSEC into the home., Dickson, Brian
Next by Thread:  Re: [DNSOP] Practical issues deploying DNSSEC into the home., Masataka Ohta
Indexes:  [Date] [Thread] [Top] [All Lists]