Hi everybody here, A new version of I-D, draft-zhang-dnsop-weak-trust-anchor-00.txthas been successfully submitted and posted to the?IETF repository.?Name: draft-zhang-dnsop-weak-trust-anchorRevision: 00Title: Weak Trust Anchor IntroductionDocument date: 2014-05-30Group: Individual SubmissionPages: 7URL:?http://www.ietf.org/internet-drafts/draft-zhang-dnsop-weak-trust-anchor-00.txtStatus:?https://datatracker.ietf.org/doc/draft-zhang-dnsop-weak-trust-anchor/Htmlized:?http://tools.ietf.org/html/draft-zhang-dnsop-weak-trust-anchor-00??Abstract:?? DNS Security Extensions (DNSSEC) is an effective method to provide?? security protection for resolvers and end users in the DNS protocols.?? But the DNSSEC is too aggressive for the DNS service in the poor?? network infrastructure, because the domain name will be invisible?? when large DNSSEC messages were dropped by some other network?? equipments, like the routers which have MTU problem or the old?? firewalls which do not support ENDS0.? This document defines a new?? concept weak trust anchor which can be used on a security-aware?? resolver to get rid of the above problem.? I am looking for feedback for this draft, feel free to comment. Best regards Haikuo Haikuo ZhangCNNICcell phone:(+86)13910920813email: [email protected]
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
