Follow up,
The good thing about CGA-TSIG or using CGA or SSAS as the algorithm is that,
if you only know the IP address (set it manually for the first time or can
receive it from a secure way like you can trust your router). Then no need
for any check on the public key since there is binding betwe
Hi JINMEI,
Thanks for your question and review.
> > [...] For DNS resolver, it
> > receives this IP address securely via the option in the router
> > advertisement message.
>
> So, the security of this approach relies on how securely the client can
get the
> resolver's address, e.g.,
> - Using S
I have one quick question for my own understanding:
At Fri, 28 Feb 2014 15:55:21 +0100,
"Hosnieh Rafiee" wrote:
> [...] For DNS resolver, it
> receives this IP address securely via the option in the router advertisement
> message.
So, the security of this approach relies on how securely the cli