[83669] in cryptography@c2.net mail archive
DNSSEC to be strangled at birth.
daemon@ATHENA.MIT.EDU (Dave Korn)
Thu Apr 5 09:57:10 2007
From: "Dave Korn" <dave.korn@artimi.com>
To: <cryptography@metzdowd.com>
Date: Wed, 4 Apr 2007 17:51:27 +0100
Afternoon all,
This story is a couple of days old now but I haven't seen it mentioned
on-list yet.
The DHS has "requested the master key for the DNS root zone."
http://www.heise.de/english/newsticker/news/87655
http://www.theregister.co.uk/2007/04/03/dns_master_key_controversy/
http://yro.slashdot.org/article.pl?sid=07/03/31/1725221
Can anyone seriously imagine countries like Iran or China signing up to a
system that places complete control, surveillance and falsification
capabilities in the hands of the US' military intelligence? I could see some
(but probably not even all) of the European nations accepting the move at face
value and believing whatever assurances of safeguards the DHS might offer, but
the rest of the world....? No way.
Surely if this goes ahead, it will mean that DNSSEC is doomed to widespread
non-acceptance. And unless it's used everywhere, there's very little point
having it at all.
cheers,
DaveK
--
Can't think of a witty .sigline today....
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
