[dnssec-key-tf] Proposed Mesage to IANA

Previous message: [dnssec-key-tf] decision time on IANA letter

Next message: [dnssec-key-tf] [barbara.roseman at icann.org: Re: TLD trust Anchor Repository]

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jim Reid
Wed Apr 16 15:11:30 CEST 2008

On 16 Apr 2008, at 13:06, Joao Damas wrote:

> I am struggling with what would constitute a secure channel here?

I think we all are Joao. So let's duck this and leave it as an  
implementation detail for the consenting parties.

> I think most important part here is that key is not slurped from the  
> zone itself, but that it arrives at IANA by another means (and can  
> later be checked against the DNS entries)

Yup! How the key gets from A to B securely (for some definition of  
securely) is up to A and B to figure out. Nobody else needs to know or  
care about that. As long as this does not involve B grabbing A's  
keying material from the zone, as you rightly pointed out.

Previous message: [dnssec-key-tf] decision time on IANA letter

Next message: [dnssec-key-tf] [barbara.roseman at icann.org: Re: TLD trust Anchor Repository]

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ Dnssec-key-tf Archive ]