[Dnssec-deployment] DNSSEC aware recursive name servers

[Patrik Fältström]

On 6 aug 2011, at 19.31, Mohan Parthasarathy wrote:

> But the security requirements are different in the two cases. If it is
> running on a different host, don't we have the same problem again ?

No.

Today we have _two_ problems. For the querying DNS resolver to know whether an upstream resolver did validate or not (and what the result is) and secondly to secure the communication between the two resolvers.

   Patrik