DNSOP mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: George Michaelson <ggm@apnic.net>
Cc: Edward Lewis <edlewis@arin.net>, Michael Richardson <mcr@sandelman.ottawa.on.ca>, dnsop@cafax.se
From: Jakob Schlyter <jakob@crt.se>
Date: Thu, 20 Mar 2003 00:57:04 +0100 (CET)
In-Reply-To: <20030320051200.4f398ad8.ggm@apnic.net>
Sender: owner-dnsop@cafax.se
Subject: Re: Radical Surgery proposal: stop doing reverse for IPv6.

On Thu, 20 Mar 2003, George Michaelson wrote:

> Unless I mis-read the Security directorate black hat view, its not permissable
> to use DNSSEC keys to secure any other aspect of the Internet, apart from the
> DNS itself.

the KEY RR can only be used for DNSSEC itself. other RRs, like IPSECKEY,
can contain keys.

> So we'd be talking about an RR identifying a key, to be found in some other
> context specific key distribution framework. Right?

the IPSECKEY RR contains the actual key and what security gateway to use.

	jakob
#----------------------------------------------------------------------
# To unsubscribe, send a message to <dnsop-request@cafax.se>.

References:
- Radical Surgery proposal: stop doing reverse for IPv6.
  - From: George Michaelson <ggm@apnic.net>
- Re: Radical Surgery proposal: stop doing reverse for IPv6.
  - From: Michael Richardson <mcr@sandelman.ottawa.on.ca>
- Re: Radical Surgery proposal: stop doing reverse for IPv6.
  - From: George Michaelson <ggm@apnic.net>
- Re: Radical Surgery proposal: stop doing reverse for IPv6.
  - From: Edward Lewis <edlewis@arin.net>
- Re: Radical Surgery proposal: stop doing reverse for IPv6.
  - From: George Michaelson <ggm@apnic.net>

Prev by Date: Re: Radical Surgery proposal: stop doing reverse for IPv6.
Next by Date: Re: dns discovery for agenda? [Re: chairs and charter]
Prev by thread: Re: Radical Surgery proposal: stop doing reverse for IPv6.
Next by thread: Re: Radical Surgery proposal: stop doing reverse for IPv6.
Index(es):
- Date
- Thread

Home | Date list | Subject list