[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Netscape the Big Win



> Well, X.509 for now. The Eastlake-Kaufman DNS Security work
> (draft-ietf-dnssec-secext-04.txt) plus MOSS (draft-ietf-pem-mime-08.txt
> --now proposed standard, awaiting an RFC number) promise to give us
> a non-X.509 certification structure for the Internet.

I have serious concerns about whether the DNS stuff will really scale.
It's gonna blow out DNS server memory use, and the bigger packets means
a *lot* more TCP (vs UDP) activity.
	/r$