[Dnssec-deployment] DNSSEC aware recursive name servers

Patrik Fältström paf at cisco.com
Sat Aug 6 16:19:12 EDT 2011


On 6 aug 2011, at 19.31, Mohan Parthasarathy wrote:

> But the security requirements are different in the two cases. If it is
> running on a different host, don't we have the same problem again ?

No.

Today we have _two_ problems. For the querying DNS resolver to know whether an upstream resolver did validate or not (and what the result is) and secondly to secure the communication between the two resolvers.

   Patrik



More information about the Dnssec-deployment mailing list