the useful thing about what Steve said, is that its the convergence of desire and reality. Well, 'desire' might be a stretch, but I think he recognizes national laws as a concrete reality we can't pretend doesn't exist.
there is a forcing function in reality here, which I find compelling. btw: I actually like ideas I pick up from 'sunlight on certs' anyway, irrespective of DANE or DNSSEC based things. I see no reason not to have more community consciousness of what TA are seen to be good actors and are understood. and more light shining on bad actors. On Wed, Nov 6, 2013 at 10:37 AM, Stephen Kent <[email protected]> wrote: > Ben, > > because the constrained chains begin somewhere below the TA, which leaves >>> EVERY >>> TA free to create ANY subordinate CA. Also, ccTLDs represent the sort of >>> sovereign alignment to a PKI that many folks find attractive. >>> >> For exactly the reason many find it unattractive :-) >> > I am not a fan of viewing the Internet as an extra-national entity. > Maybe that makes me a heretic WRT Google's idea of cyberspace and reality > ;-) . > > Countries have a right to manage a lot of things within their borders, > and managing their DNS name spaces seems quite reasonable. > > Steve > > _______________________________________________ > perpass mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/perpass >
_______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
