On Sat, 23 Jul 2005, Masataka Ohta wrote:
PKI has nothing to do with E2E.
As CAs and DNS servers are intermediate systems, neither PKI nor
DNS are E2E.
As intermediate systems, they don't have any information on
ongoing transaction that they can't give any real guarantee.
Masataka-San, your NO
At 22:54 22/07/2005, Brian E Carpenter wrote:
I wouldn't change a word in RFC 2826.
The problem with RFC 2826 is that it links (for information) a unique
domain name resolution (what we want) with a unique authoritative root file
(we do not care it is "unique", we want the one we use to be pert
Brian E Carpenter wrote:
> Don't forget that
> the uniqueness property of a domain name is used to guarantee uniqueness
> in other, derived, namespaces,
How is it guaranteed? That is, who pays how much if the broken
uniqueness resulted in loss of, say, $1,000,000?
Without proper guarantee, based
Stephane Bortzmeyer wrote:
On Fri, Jul 22, 2005 at 10:08:03AM -0400,
Francois Menard <[EMAIL PROTECTED]> wrote
a message of 42 lines which said:
You, not everybody
v
I would for example not trust .travel from new.net if ICANN had assumed
control over .travel ... I should be able to pic
At 10:08 AM -0400 7/22/05, Francois Menard wrote:
I would for example not trust .travel from new.net if ICANN had
assumed control over .travel ... I should be able to pick this from
a PKI-based P2P trust chain, would I not?
Then you have created a new root, namely a combined one that you have
At 13:31 22/07/2005, Francois Menard wrote:
IETF-ers,
What is the latest state-of-the-art thinking at the IETF about a
distributed multiple-root systems for name discovery based on end-to-end
peer-to-peer PKI-based trust discovery and trust chain management &
properties/capabilities exchange (
On Fri, Jul 22, 2005 at 10:08:03AM -0400,
Francois Menard <[EMAIL PROTECTED]> wrote
a message of 42 lines which said:
You, not everybody
v
> I would for example not trust .travel from new.net if ICANN had assumed
> control over .travel ... I should be able to pick this from a PKI-based
>
However, there is more generality to my question ... I need a quick
rundown of the latest thinking (RFCs, ID's, IESG & IAB directives, IRTF
experiments) regarding:
1) distributed multiple roots
I would certainly be interested in any scientific and technical papers
about this issue. This is a ve
You have of course read RFC 2826, "IAB Technical Comment on the Unique DNS
Root"?
Of course, this is specifically about the DNS, and doesn't answer your
question as it pertains to non-DNS systems
--On fredag, juli 22, 2005 07:31:48 -0400 Francois Menard
<[EMAIL PROTECTED]> wrote:
IET
On Fri, Jul 22, 2005 at 07:31:48AM -0400,
Francois Menard <[EMAIL PROTECTED]> wrote
a message of 39 lines which said:
> However, there is more generality to my question ... I need a quick
> rundown of the latest thinking (RFCs, ID's, IESG & IAB directives, IRTF
> experiments) regarding:
>
>
IETF-ers,
What is the latest state-of-the-art thinking at the IETF about a
distributed multiple-root systems for name discovery based on end-to-end
peer-to-peer PKI-based trust discovery and trust chain management
& properties/capabilities exchange (I can sign you, you can sign me, I can
do
11 matches
Mail list logo