.gov DNSSEC operational message - picking a fight

• Previous message (by thread): .gov DNSSEC operational message - picking a fight
• Next message (by thread): .gov DNSSEC operational message - picking a fight
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 28 Dec 2010, at 22:46, bmanning at vacation.karoshi.com wrote:
> 
>    IMHO, key management should be able to use an OOB channel
>    when the in-band is corrupted or overlaoded.  Reliance on
>    strictly the IB channel presumes there will be no problems
>    with that channel.  EVER.   For me, I don't want to take 
>    that risk.  YMMV of course.  

If normal DNS resolution fails to work then there's no point in getting the keys from another source since there's no data for them to validate.

Tony.
--
f.anthony.n.finch  <dot at dotat.at>  http://dotat.at/

• Previous message (by thread): .gov DNSSEC operational message - picking a fight
• Next message (by thread): .gov DNSSEC operational message - picking a fight
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]