On Jan 31, 2011, at 2:32 PM, Joe Abley wrote: > It's scrappy, and it's little more than I have said on this list in the past > week, but I thought it might be handy to have in written form.
I'm not entirely sure I grokked section 6. It sounds like you're proposing that we use locally-configured X.509 certs from certificate authorities as the only mechanism for validating the trust anchor that we retrieve from the IANA. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop