[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: DNS Security
Hilarie makes a good point with regard to DNS; Donald's argument about
providing security at the application layer vs. a lower layer is a
traditional one that has yet to be resolved. Directory services can
have security requirements that make them poor candidates for lower
layer security protocols. For example, if I send a requuest to a
local directory server and it forwards that request to another server,
only an authentication facility at the application layer can provide
source-to-desitination authentication of the request and the
response.
Steve