[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

DNSSEC (was: A brief comparison of email encryption protocols)



On Tue, 5 Mar 1996, Carl Ellison wrote:
> Date: Tue, 5 Mar 1996 00:34:41 -0500
> >From: Adam Shostack <[email protected]>
> >Subject: Re: A brief comparison of email encryption protocols
> >To: [email protected] (Eric Murray)
> >Date: Mon, 4 Mar 1996 21:18:41 -0500 (EST)
> >Cc: [email protected], [email protected], [email protected], [email protected],
> >        [email protected], [email protected]
> > ...
> >
> >| Along those lines, I was envisioning adding a KEY RR type to
> >| DNS, and using it to maintain pointers to keyservers.
> >
> >[...]
> >| This sounds so obvious that I'm sure that I'm not the first
> >| or even the tenth person to think of it, and in fact I
> >| see a KEY RR type defined in the BIND 4.9.3BETA17 source.  But
> >| there's just a type there, nothing else to support it.
> >| Anyone know what it's for?
> >
> >        Donald Eastlake is writing the spec for storing keys in
> >nameservers.  Its in the process of moving to draft standard; there
> >will probably be something about it after LA.  I think its:
> >
> >ftp://ds.internic.net/draft-ietf-dnssec-secext-09.txt

actually its in /internet-drafts/draft-ietf-dnssec-secext-09.txt on any of
the IETF shadow directory machines such as ftp.isi.edu or ds.internic.net via
ftp. 

It's up for Internet Proposed Standard and tehre were no objections at the
DNSSEC working group meeting this morning. It provides for KEY RRs and SIG
(signature) RRs.  I recommend people check it out.

> >Adam
> >
> >--
> >"It is seldom that liberty of any kind is lost all at once."
> >                                                       -Hume
> +--------------------------------------------------------------------------+
> |Carl M. Ellison          [email protected]   http://www.clark.net/pub/cme |
> |CyberCash, Inc., Suite 430                   http://www.cybercash.com/    |
> |2100 Reston Parkway           PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
> |Reston, VA 22091      Tel: (703) 620-4200                                 |
> +--------------------------------------------------------------------------+

Donald
=====================================================================
Donald E. Eastlake 3rd     +1 508-287-4877(tel)     [email protected]
   318 Acton Street        +1 508-371-7148(fax)     [email protected]
Carlisle, MA 01741 USA     +1 703-620-4200(main office, Reston, VA)
http://www.cybercash.com           http://www.eff.org/blueribbon.html