To:
sommerfeld@orchard.arlington.ma.us
cc:
Edward Lewis <lewis@tislabs.com>, keydist@cafax.se
From:
Keith Moore <moore@cs.utk.edu>
Date:
Mon, 25 Mar 2002 20:11:39 -0500
In-reply-to:
(Your message of "Mon, 25 Mar 2002 19:18:53 EST.") <20020326001858.563452A4E@orchard.arlington.ma.us>
Sender:
owner-keydist@cafax.se
Subject:
Re: My take on the BoF session
> Presuming the widespread deployment of dns security, provide > infrastructure allowing two systems on the internet to > opportunistically establish secure communications with moderate levels > of assurance with minimal to no preconfiguration. what does "moderate levels of assurance" mean? not everyone will agree that the dnssec delegation model provides such, particularly when an untrustworthy root or TLD zone poses a significant threat to large numbers of users. I'm not sure that "minimal to no preconfiguration" is even compatible with "moderate levels of assurance", since not everyone trusts the same kind of assurance mechanism. Keith