To:
mohta@necom830.hpcl.titech.ac.jp (Masataka Ohta)
Cc:
Harald@Alvestrand.no, randy@psg.com, liman@sunet.se, dnsop@cafax.se
From:
hannigan@fugawi.net
Date:
Thu, 2 Dec 1999 19:50:57 -0500 (EST)
In-Reply-To:
<199912030022.JAA07450@necom830.hpcl.titech.ac.jp> from "Masataka Ohta" at Dec 3, 99 09:22:26 am
Sender:
owner-dnsop@cafax.se
Subject:
Re: Last WG call for draft-ietf-dnsop-root-opreq-02.txt.
> > Harald; > > > Suggested replacement language: > > > > "An operator of a root zone server MUST be able to get proof of the > > correctness of a zone file from the authority responsible for updating it > > by means not involving DNS operations, for example by telephone, fax, > > signed email with a trusted signature or other means". > > No. > > You are saying that telephone and fax were more serure than unsigned > email. > Telephone is secure only in it's billing, and fax is only as secure as telephony. Caller-ID and other signal messaging functions are also not guaranteed. Anyone could call or fax and say they are someone that they are not. I think this is a little vague for a security measure. -M