I have one quick question for my own understanding: At Fri, 28 Feb 2014 15:55:21 +0100, "Hosnieh Rafiee" <i...@rozanak.com> wrote:
> [...] For DNS resolver, it > receives this IP address securely via the option in the router advertisement > message. So, the security of this approach relies on how securely the client can get the resolver's address, e.g., - Using SEND for RAs with RFC 6106 - (If and when it's defined) Using public-key based DHCPv6 authentication And, to make this part secure, the client needs to get the router's certification or the server's public key securely beforehand. Is my understanding correct? -- JINMEI, Tatuya _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
