[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Storing Certificates in the DNS (draft-ietf-dnsext-rfc2538bis-08)

To: todd.glassey@xxxxxxx
Subject: RE: Storing Certificates in the DNS (draft-ietf-dnsext-rfc2538bis-08)
From: Paul Hoffman <paul.hoffman@xxxxxxxx>
Date: Thu, 13 Oct 2005 09:48:35 -0700
Cc: <ietf-pkix@xxxxxxx>
In-reply-to: <101320051443.13707.434E72990005C3C50000358B2160281060970A9C9C0E0409D20B0B 019B@xxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <101320051443.13707.434E72990005C3C50000358B2160281060970A9C9C0E0409D20B0B 019B@xxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx


At 2:43 PM +0000 10/13/05, todd.glassey@xxxxxxx wrote:

phb - NO ONE in their right mind would use DNS as the onlyrepository for storing certificates and this initiative and theconversations in re of this idea are demonstrative of how littlePKIX has a grip on reality IMHO. Clearly storing certs for DNS inDNS and possibly in some limited scope might work, but the realityis why bother - the issue is in the trust and use models - somethingwhich this group refuses to do...

Reading the subject line of this thread shows that this effort comesfrom the DNSEXT WG, not this one.


--Paul Hoffman, Director
--VPN Consortium

Prev by Date: RE: Storing Certificates in the DNS (draft-ietf-dnsext-rfc2538bis-08)
Next by Date: Re: Storing Certificates in the DNS (draft-ietf-dnsext-rfc2538bis-08)
Previous by thread: RE: Storing Certificates in the DNS (draft-ietf-dnsext-rfc2538bis-08)
Next by thread: Oops Re: Hash Workshop Program Ready and Posted
Index(es):
- Date
- Thread