You assume the new .net key (and what's signed with it) would be
supplied to all users of the DNS, rather than used for a targeted
attack on one user (or a small number of users). Why assume the
potential adversary will restrict himself to the dumbest possible way
to use the new tools you're
On Fri, Apr 06, 2007 at 05:13:00PM -, John Levine wrote:
You assume the new .net key (and what's signed with it) would be
supplied to all users of the DNS, rather than used for a targeted
attack on one user (or a small number of users). Why assume the
potential adversary will restrict
