DANE, was A Deep Dive on the Recent Widespread DNS Hijacking

Julien Goodwin nanog at studio442.com.au
Wed Feb 27 04:58:58 UTC 2019

On 27/2/19 3:10 am, John Levine wrote:
> In article <B68C84D4-9D1A-4303-94CA-59CEBFB6B934 at pch.net> you write:
>> We need to get switched over to DANE as quickly as possible, and stop wasting effort trying to keep the CA system alive with
>> ever-hackier band-aids.
> What's the DANE version of a green-bar cert?

You mean the EV certificates that most browsers are removing the distinction of, removing their only real justification for existing?


Not that they were ever actually widely used.


More information about the NANOG mailing list