Dear all,
there is a draft about resolver key, which trys to attack the dnssec last
mile problem solution.
the idea is similar to DKIM, which identify the domain sending the email.
here we use the similar mechanism to identify the response from the resolver to
the stub resolver.
any comments are welcome.
thanks a lot.
Jiankang Yao
- Original Message -
From: internet-dra...@ietf.org
To: i-d-annou...@ietf.org
Sent: Friday, September 10, 2010 10:30 AM
Subject: I-D Action:draft-yao-dnsop-resolverkey-01.txt
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Resolver Key Identified DNS Query
Author(s) : J. Yao
Filename: draft-yao-dnsop-resolverkey-01.txt
Pages : 8
Date: 2010-09-09
DNSSEC hardens the DNS between the root server and the recursive
resolver. It does not secure the communications between the stub
resolver and the recursive resolver. This document specifies the
mechanism which deals with securing the communications between them.
A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-yao-dnsop-resolverkey-01.txt
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Below is the data which will enable a MIME compliant mail reader
implementation to automatically retrieve the ASCII version of the
Internet-Draft.
___
I-D-Announce mailing list
i-d-annou...@ietf.org
https://www.ietf.org/mailman/listinfo/i-d-announce
Internet-Draft directories: http://www.ietf.org/shadow.html
or ftp://ftp.ietf.org/ietf/1shadow-sites.txt
Content-Type: text/plain
Content-ID: 2010-09-09192208@ietf.org
___
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop