It's good to see an argument against these laws from a purely technical perspective beyond reemphasizing how easy these protections are to circumvent. The implementation of these blacklists could inadvertently provide a vector to alter DNS behavior, especially if they are required to obtain and update these blacklists from a trusted source automatically. Considering the recent embarrassment surrounding DigiNotar, implicit trust does have disadvantages.
On 11/15/11, Lisa Kachold <lisakach...@obnosis.com> wrote: > http://www.brookings.edu/papers/2011/1115_cybersecurity_friedman.aspx > > -- > (602) 791-8002 Android > (623) 239-3392 Skype > (623) 688-3392 Google Voice > ** > HomeSmartInternational.com > --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
