Re: Minutes from SAAG session at IETF 61
Jeff Williams <jwkckid1 <at> ix.netcom.com>
2004-12-09 04:17:28 GMT
Sam and all,
Why does the global DNS as you put it, require a single solution?
In fact as the DNS changes, and/or evolves and grows, it would seem
illogical that a single solution, or one size fits all, would be workable
A protocol interface, that could interface or support multiple
security protocols would be a much more flexible and logical
approach as to addressing the global DNS as it evolves/changes...
Sam Hartman wrote:
> I'd recommend adding to the section discussing open mic:
> Several people discussed requirements of security mechanisms to
> achieve positive deployment experience. There seemed to be general
> agreement among participants in the discussion that security protocols
> that can fit into whatever existing credential infrastructures are
> available have had better deployment experience than protocols that
> require a new credential infrastructure. Participants also agreed
> that it is desirable to create security protocols that can work with a
> variety of credential infrastructures. However, there are some environments,
> like the global DNS, where a single solution is required.
> saag mailing list
> saag <at> mit.edu