> > Can you compare the TTL of the ephemeral key record with the A/AAAA > > record TTL? Are they related? If someone can get phony records into > > DNS, can they then become the real MLT server? For how long? > > > Admittedly I don't know anything about MLT, but your question indicates > what might be a serious misunderstanding about DNSSEC.
No, thanks, I understand that. I am asking only about the TTL's of the epehemeral key and what the risks/exposures are. _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
