Paul Hoffman wrote:
> The reason these numbers are never discussed in DNSOP is because
> no one is discussing their actual threat model and the estimated
> value of the attacks.
The practical threat model is frequent social attacks on a trusted
third party or two, which means there is no such thing as a trusted
third party.
That is, PKI, including DNSSEC, merely gives false sense of security.
Masataka Ohta
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop
