IETF Logo Mail Archive

Re: [dnsext] Authenticated denial of existence...

Jelte Jansen <jelte.jansen@sidn.nl> Mon, 25 November 2013 16:05 UTC

Return-Path: <Jelte.Jansen@sidn.nl>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECF3A1ADF7F for <dnsext@ietfa.amsl.com>; Mon, 25 Nov 2013 08:05:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.093
X-Spam-Level:
X-Spam-Status: No, score=0.093 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HELO_EQ_NL=0.55, HOST_EQ_NL=1.545, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DUs6eVMjkyoh for <dnsext@ietfa.amsl.com>; Mon, 25 Nov 2013 08:05:14 -0800 (PST)
Received: from ede1-kamx.sidn.nl (kamx.sidn.nl [IPv6:2a00:d78:0:147:94:198:152:69]) by ietfa.amsl.com (Postfix) with ESMTP id BC2781ADF6E for <dnsext@ietf.org>; Mon, 25 Nov 2013 08:05:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; d=sidn.nl; s=sidn_nl; c=relaxed/relaxed; h=message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:x-enigmail-version:content-type:content-transfer-encoding:x-originating-ip; bh=oxRcACLE7bxHwU1LJ7CE3OhOE3gVUlQTF0/OJxcfpnY=; b=KShBl2esFckAa2rlzZB2U0V+i2pT3qaoiLlyN83pYv+K5R1ygduX63mmPSC8DX3wZoDY8Y4ajIbhFhKWKv4DI48ilRfKPusa1Hp6stcIuX/KpWirIchMcWI60xiJ130l54DD5+2wAifmrNVCboDYd947v38W3bxDHG+Bc8D9nG8=
Received: from kahubcasn01.SIDN.local ([192.168.2.73]) by ede1-kamx.sidn.nl with ESMTP id rAPG4WkB032155-rAPG4WkE032155 (version=TLSv1 cipher=AES128-SHA bits=128 verify=CAFAIL); Mon, 25 Nov 2013 17:04:42 +0100
Received: from [94.198.152.214] (94.198.152.214) by kahubcasn01.SIDN.local (192.168.2.77) with Microsoft SMTP Server (TLS) id 14.3.158.1; Mon, 25 Nov 2013 17:04:39 +0100
Message-ID: <52937517.9060503@sidn.nl>
Date: Mon, 25 Nov 2013 17:04:39 +0100
From: Jelte Jansen <jelte.jansen@sidn.nl>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.1.1
MIME-Version: 1.0
To: Tony Finch <dot@dotat.at>
References: <CFD6B510-D70E-4308-BF3E-B2E7C2ADCBEB@nominum.com> <alpine.LSU.2.00.1311201202570.11548@hermes-2.csi.cam.ac.uk> <21132.63250.716415.755401@gro.dd.org> <20131125140508.GB20994@miek.nl> <alpine.LSU.2.00.1311251538220.24198@hermes-2.csi.cam.ac.uk> <52937303.4070904@sidn.nl> <alpine.LSU.2.00.1311251558261.11548@hermes-2.csi.cam.ac.uk>
In-Reply-To: <alpine.LSU.2.00.1311251558261.11548@hermes-2.csi.cam.ac.uk>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Originating-IP: [94.198.152.214]
Cc: dnsext@ietf.org
Subject: Re: [dnsext] Authenticated denial of existence...
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext/>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Nov 2013 16:05:17 -0000

On 11/25/2013 04:59 PM, Tony Finch wrote:
> Jelte Jansen <jelte.jansen@sidn.nl> wrote:
>>
>> now that you quote it like that, I think that using 'allowed' in that
>> first line is misleading; it's not so much that the protocol doesn't
>> allow on-line signing, the requirement was that it didn't have to rely
>> on it. Also, IIRC the preferred term was on-the-fly rather than on-line.
> 
> Good points. What's the best opposite for on-the-fly? Pre-signed?
> 

I guess so, or maybe pre-generated in a slightly wider context

Jelte

v2.39.1 | Report a Bug | By Email | System Status