To:
lewis@tislabs.com (Edward Lewis)
Cc:
dnsop@cafax.se, lewis@tislabs.com
From:
Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
Date:
Fri, 14 Apr 0 0:53:12 JST
In-Reply-To:
<v03130311b51a3bc1c2d1@[10.33.10.14]>; from "Edward Lewis" at Apr 13, 100 2:24 am
Sender:
owner-dnsop@cafax.se
Subject:
Re: Off-tree validation
Edward; > Now, if off-tree validation is used, the question of whether or not the > child is secured is no longer a binary question. It is not binary, from the beginning. The answer can be: secured, not secured or unknown (because of server failure or DoS). That is, as I pointed it out from the beginning, authentication that a zone is insecure is useless. Masataka Ohta