This is a common misconception. DNS over SCTP will not solve 90% of the problems!
On Thu, May 28, 2009 at 10:16 AM, Alessandro Vesely <ves...@tana.it> wrote: > Stephane Bortzmeyer wrote: > >> It seems that DNS over SCTP would solve 90% of the problems with 10% >>> of the efforts and resources required to implement DNSSEC. However, >>> I hear more often about the latter than the former. How come? >>> >> >> I've read this message via the IETF general mailing list and so I >> missed the beginning. In what way can you compare DNSSEC (which >> provides object security) and SCTP or TCP (which provide a better >> channel security for DNS)? >> > > The discussion was about how to get rid of the threats illustrated, e.g., > in Kaminsky, D.: "It’s the end of the cache as we know it." In: Black Hat > conference (2008). Online at http://www.doxpara.com/DMK_BO2K8.ppt > > _______________________________________________ > Ietf mailing list > Ietf@ietf.org > https://www.ietf.org/mailman/listinfo/ietf >
_______________________________________________ Ietf mailing list Ietf@ietf.org https://www.ietf.org/mailman/listinfo/ietf