[dnssec-deployment] A gazillion new TLDs
George M Jones
gmjones at mitre.org
Fri Jun 27 08:18:16 EDT 2008
Phil Regnauld wrote:
>
> George M Jones (gmjones) writes:
> > Any thoughts on the implications of many more TLDs on DNSSEC
> deployment ?
> >
> > http://tech.slashdot.org/article.pl?sid=08/06/26/1814205
> >
> > Clearly no new technical issues, but increased complexity/scale (never a
> > friend of security).
>
> What increased complexity ? We're just talking about a larger
> number
> of delegations to be signed under .
>
That's the technical end of it. A shell script can handle that.
I was wondering about the complexity of dealing with larger #s of
organizations with differing technical
ability, different motivations, different processes, more chances for
things to go wrong, more keys to manage, etc....
maybe its a non-issue (I hope) or off topic, but I was wondering if
anyone sees scaling issues that might impact
security/deployability.
---George Jones
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3495 bytes
Desc: S/MIME Cryptographic Signature
Url : http://dnssec-deployment.org/pipermail/dnssec-deployment/attachments/20080627/d2f9ca7a/attachment.bin
More information about the Dnssec-deployment
mailing list