[dnssec-deployment] aug2004 CAM of interest?
Edward Lewis
edlewis at arin.net
Tue Aug 17 17:41:29 EDT 2004
At 20:55 +0000 8/17/04, bmanning at vacation.karoshi.com wrote:
> amen. but we'd better open it anyway. (or am I the lone
> wolf on this?)
Wolf?
What would be really, really helpful, is to have documented
operational scenarios describing the sequence of events that might
happen in interesting situations. E.g., the "breaking" of an
algorithm, the discovery of a guessed root key and other situations
that the "owners" of the Internet might fear.
From this, "us engineers" can try to derive test situations for
upcoming vetting workshops.
There have been many productive workshops on DNSSEC in the past 5
years. The early ones were productive because we had so many holes
in the code and spec. (We measured effectiveness in how many bugs
were found.) Following this period were workshops that were
productive because new features were there to try - such as the
secure dynamic workshop in January 2002(?). As the workshops went
on, focus has been harder to come by though. If someone could
document "operational fear scenarios", this might help out now.
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis +1-703-227-9854
ARIN Research Engineer
"I can't go to Miami. I'm expecting calls from telemarketers." -
Grandpa Simpson.
More information about the Dnssec-deployment
mailing list