[arin-announce] ARIN Resource Certification Update

• Previous message (by thread): [arin-announce] ARIN Resource Certification Update
• Next message (by thread): [arin-announce] ARIN Resource Certification Update
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 1/24/2011 8:52 PM, Roland Dobbins wrote:
> On Jan 25, 2011, at 11:35 AM, Christopher Morrow wrote:
>
>> thinking of using DNS is tempting
>
> The main arguments I see against it are:
>
>
> 2.	The generally creaky, fragile, brittle, non-scalable state of the overall DNS infrastructure in general.

Can you expand on this a bit?

> Routing and DNS, which are the two essential elements of the Internet control plane, are e also its Achilles' heels.  It can be argued that making routing validation dependent upon the DNS would make this situation worse.
>
> The main reasons for it are those Danny stated:
>
> 1.	DNS exists.
>
> 2.	DNSSEC is in the initial stages of deployment.
>
> 3.	There's additional relevant work going on which would make DNS more suitable for this application.
>
> 4.	Deployment inertia.
>

I kind of like the DNS idea. Though some challenges have been raised in 
this thread that warrant further discussion.  In particular the in.addr 
delegation scenarios between RIRs.

• Previous message (by thread): [arin-announce] ARIN Resource Certification Update
• Next message (by thread): [arin-announce] ARIN Resource Certification Update
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]