[dnssec-deployment] DNSSEC in Russia
Andrew Sullivan
ajs at shinkuro.com
Thu Apr 2 16:19:19 EDT 2009
On Thu, Apr 02, 2009 at 03:24:06PM -0400, Edward Lewis wrote:
> Attempting to focus this back on ... (as the subject says) ... DNSSEC in
> Russia, (subsequently) leading to the use of two different algorthims
> signing the root zone and the impact on size ...
I have my doubts about the need to have two different algorithms in
the root anyway. We've already heard that for validation, the
currently-defined suite of algorithms is probably all right. And if
someone claims otherwise, it seems to me to be worth asking whether
that could be true -- is it true, for instance, that nobody in Russia
is allowed to visit RSA-based SSL websites?
A
--
Andrew Sullivan
ajs at shinkuro.com
Shinkuro, Inc.
More information about the Dnssec-deployment
mailing list