Ted Hardie;
> > Isn't prevention of DoS attack on root servers a good enough reason
> > to deploy anycast?
> >
> > Masataka Ohta
>
> No.
>
> Deploying anycast services (outside the RFC-1930 compliant methods
> currently in use) lessens the effect of a DoS attack, but at the cost
> of risking the integrity of the data provided by the service.
As I pointed it out several times already, anycast root servers
is the protection from forged route that the risk of getting
forged data is reduced.
> Once
> the data is adequately protected against that risk,
What is the current protection against the forged data?
Today, it is so easy to forge route to root servers and the data.
Masataka Ohta
#----------------------------------------------------------------------
# To unsubscripbe, send a message to <[EMAIL PROTECTED]>.
