[Dnssec-deployment] Analysis of NASA.GOV DNSSEC Issue 18-Jan-2012
sm at resistor.net
Sat Jan 28 04:15:06 EST 2012
At 00:38 28-01-2012, Patrik Fältström wrote:
>Conclusion: I think the ability to "override"
>errors and problems in DNSSEC is something that
>should stay "in the network". And never be presented to the end user.
Asking the user to make a decision which will
likely be based on "someone told me that" is not a good option.
In other areas, there are feedback loops to
facilitate the "override" decision. The
communication channel used (see message from
Edward Lewis on this thread) is not a feedback loop in my opinion.
More information about the Dnssec-deployment