Daniel- I agree COMPLETELY. We just need apps - and that is one of the main thrusts in my awareness efforts. What I meant by proofs is something more than suspicions re 1024RSA or papers pointing to weak links in a few chains. -Rick
... Do you really think we should prove anything to anyone? All we need to make DNSSEC a success is to build more applications/layers that cannot exist without it, such as DANE. DANE is a good candidate, especially in light of the recent many reports on CA PKI failure for SSL. A very well known and understand problem in our community… but why is nobody speaking of it? The CA people will lose that cash cow. The CIA types will lose the MITM abilities that the present situation provides. But this will happen sooner or later. ‘now’ is just as good time as ‘some day’. Just my 0.02. Oh, and I am happy to see BG not mentioned :) Daniel
smime.p7s
Description: S/MIME cryptographic signature
