[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Key Management, anyone?

To: Steven Bellovin <smb@research.att.com>
Subject: Re: Key Management, anyone?
From: Joe Tardo <tardo@raptor.com>
Date: Thu, 18 Jul 1996 08:39:36 -0400
Cc: ipsec@TIS.COM
Sender: ipsec-approval@neptune.tis.com

At 11:06 AM 7/19/96 -0400, Steven Bellovin wrote:

>You see where I'm heading.  Without DNSSEC, there's an unauthenticated,
>security-critical step.  I'll end up with a secure connection to an
>unknown party.  Sure, the certificate for that party will identify
>them as bearhands.com, not plugh.com -- but I as a user will never see
>that certificate.

Steve:

I eagerly await your writeup.  I don't disagree, by the way, that there
is a big problem here. My concern is that the DNSSEC solution may be
impractical except maybe for "intranets".

I am *really* concerned if root DNS key servers will be adminstered by
Network Solutions. I also don't understand how dynamic assigned ISP
addresses will work. For example, UUNET gives me a *real* ip address
that you can look up some really ugly name for, but they're not going to
give me the private key for that name, nor have they volunteered to
put my public key in for the duration of my login, never mind the
certification issues. And they adminster the DNS servers. Besides, 
best case would be your secure connection to an unknown party!

I can, however, authenticate based on my user certificate, which I
can pass on the ISAKMP id exchange. Setting up the policy for this
is going to be interesting, but seems more likely to happen.

Besides, it lets me "start small" and not rely on infrastructure.

Thanks,
Joe

Prev by Date: Key Management, anyone?
Next by Date: Re: US Patent 5,511,122
Prev by thread: Re: Key Management and DNSSEC
Next by thread: Re: Key Management, anyone?
Index(es):
- Main
- Thread