On Jan 26, 2012, at 1:34 PM, Phillip Hallam-Baker wrote: > If a system is going to be robust in practice it has to take account > of all possible sources of error including administrative incompetence > and user error.
I'm curious: where do you draw the line? Should routing system security be included? Email security (since many transactions relating to DNS zone administration occur via email)? Telephone? Etc. > Security that only looks at malice is brittle security. Security that looks at 'all possible sources of error' seems to me to be a halting state problem Regards, -drc _______________________________________________ therightkey mailing list therightkey@ietf.org https://www.ietf.org/mailman/listinfo/therightkey
