On Jul 29, 2018, at 12:19, Steve Crocker <[email protected]> wrote: > It feels like this discussion is based on some peculiar and likely incorrect > assumptions about the evolution of root service. Progression toward hyper > local distribution of the root zone seems like a useful and natural sequence. > However, the source of the copies of the root zone will almost certainly > remain robust and trusted.
I think you need to be more clear what you mean by "source". If you mean the original entity that constructs and first makes available the root zone (e.g. the root zone maintainer in the current system) then what you say seems uncontentious. If what you mean is "the place that any particular consumer if the root zone might have found it" then I think you need to show your working. Resolvers currently prime from a set of trusted servers (albeit over an insecure transport without authentication, so we could quibble about what "trusted" means even there) but it's not obvious to me that this is a necessary prerequisite for new approaches. If I have a server sitting next to me that has a current and accurate copy of the root zone and I am able to get it from there and assess the accuracy of what I receive autonomously, why wouldn't I? Joe _______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
