Ombudslistan

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: lewis@tislabs.com (Edward Lewis)
Cc: dnsop@cafax.se, lewis@tislabs.com
From: Masataka Ohta <mohta@necom830.hpcl.titech.ac.jp>
Date: Fri, 14 Apr 0 0:53:12 JST
In-Reply-To: <v03130311b51a3bc1c2d1@[10.33.10.14]>; from "Edward Lewis" at Apr 13, 100 2:24 am
Sender: owner-dnsop@cafax.se
Subject: Re: Off-tree validation

Edward;

> Now, if off-tree validation is used, the question of whether or not the
> child is secured is no longer a binary question.

It is not binary, from the beginning.

The answer can be: secured, not secured or unknown (because of server
failure or DoS).

That is, as I pointed it out from the beginning, authentication that
a zone is insecure is useless.

							Masataka Ohta

Follow-Ups:
- Re: Off-tree validation
  - From: Edward Lewis <lewis@tislabs.com>

References:
- Off-tree validation
  - From: Edward Lewis <lewis@tislabs.com>

Prev by Date: Re: Off-tree validation
Next by Date: Re: Off-tree validation
Prev by thread: Re: Off-tree validation
Next by thread: Re: Off-tree validation
Index(es):
- Date
- Thread

Home | Date list | Subject list