In message <[EMAIL PROTECTED]>, "D. J. Bernstein" writes:
>Steven M. Bellovin writes:
>
>Client-side indirection means that every client will check, slightly
>less than once per TTL, with every ISP of every server that it uses
>regularly.
Except, of course, for caching.
>
>The overall effect on Internet traffic is small either way, but it's
>much smaller with server-side indirection---and the user doesn't have to
>wait for it.
>
>> AAAA is especially problematic if DNSSEC is used, since
>> that would require resigning the entire zone -- and that's expensive.
>
>People change their zones all the time. If DNSSEC can't deal with that,
>it's in even more trouble than I thought.
Most people don't change the entire zone that often; only the changed
records need to be resigned (plus those on either side of an insertion
or deletion). With AAAA, if your ISP renumbers you (possibly because
it itself has had to renumber), you have to resign the entire zone.
More precisely, you have to resign every record in the zone.
--Steve Bellovin, http://www.research.att.com/~smb
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page: http://playground.sun.com/ipng
FTP archive: ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------
