Re: [Trans] On the worthiness of DNSSEC and PKI (Re: DNSSEC also needs CT)

Tao Effect <contact@taoeffect.com> Mon, 12 May 2014 04:23 UTC

Return-Path: <contact@taoeffect.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2537E1A03E8 for <trans@ietfa.amsl.com>; Sun, 11 May 2014 21:23:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.334
X-Spam-Level:
X-Spam-Status: No, score=-1.334 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 329q2-ZYZD26 for <trans@ietfa.amsl.com>; Sun, 11 May 2014 21:23:31 -0700 (PDT)
Received: from homiemail-a6.g.dreamhost.com (homie.mail.dreamhost.com [208.97.132.208]) by ietfa.amsl.com (Postfix) with ESMTP id DED521A03E2 for <trans@ietf.org>; Sun, 11 May 2014 21:23:31 -0700 (PDT)
Received: from homiemail-a6.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a6.g.dreamhost.com (Postfix) with ESMTP id A8689598070; Sun, 11 May 2014 21:23:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=taoeffect.com; h= content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; s=taoeffect.com; bh=3mjKhh4bBdslVQWoI KIrD5Eh+ok=; b=dXTeVQm2qBCvCp2FcbBPCSDIiWu7KH5ZAqPDW5RHg/Arw/5CR iNjV76wT2trd2qAf2/UoHsYiZRZgSRh1tf0Lboj4tnTjwKsI1WBW0MREN2532pYY sbSJ3iAMe2/YBXAfRJD7mwium74pslIAyyRk0XA/DUIJ82JGYckEiBfEMo=
Received: from [192.168.1.5] (173-17-72-87.client.mchsi.com [173.17.72.87]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: contact@taoeffect.com) by homiemail-a6.g.dreamhost.com (Postfix) with ESMTPSA id B3E0959806C; Sun, 11 May 2014 21:23:24 -0700 (PDT)
Content-Type: multipart/signed; boundary="Apple-Mail=_A912849B-3A49-4C08-B28D-495D67827D9E"; protocol="application/pgp-signature"; micalg=pgp-sha512
Mime-Version: 1.0 (Mac OS X Mail 7.2 \(1874\))
X-Pgp-Agent: GPGMail 2.1 (525b9ae)
From: Tao Effect <contact@taoeffect.com>
In-Reply-To: <2A0EFB9C05D0164E98F19BB0AF3708C7130A13ECA0@USMBX1.msg.corp.akamai.com>
Date: Sun, 11 May 2014 23:23:22 -0500
X-Mao-Original-Outgoing-Id: 421561402.210287-b8bbe52a578478fd05e8c7beaa7f8636
Message-Id: <6D89657B-997C-4587-A1E2-8822F6D2FE69@taoeffect.com>
References: <CAK3OfOjRg3B69WBhcVxCFZBZt3LeOz_F=giqT37+FUPC+OxTwA@mail.gmail.com> <D8E4B721-E4C1-4CC2-8FCF-343EE197ED79@taoeffect.com> <536D9816.1070008@gmail.com> <7719F0ED-7188-4B57-BEE6-245FD0314D36@taoeffect.com> <536DA145.6050305@gmail.com> <A1536ACA-245A-4D29-9A4B-72649C8227AB@taoeffect.com> <2A0EFB9C05D0164E98F19BB0AF3708C7130A13ECA0@USMBX1.msg.corp.akamai.com>
To: "Salz, Rich" <rsalz@akamai.com>
X-Mailer: Apple Mail (2.1874)
Archived-At: http://mailarchive.ietf.org/arch/msg/trans/HpIr1zpEN2cULjbbLeO56bfYQdU
Cc: Melinda Shore <melinda.shore@gmail.com>, "trans@ietf.org" <trans@ietf.org>
Subject: Re: [Trans] On the worthiness of DNSSEC and PKI (Re: DNSSEC also needs CT)
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 May 2014 04:23:33 -0000

Thank you Rich for answering that, and it's kind of you to offer your help.

I'll look into this as soon as time allows.

Kind regards,
Greg

--
Please do not email me anything that you are not comfortable also sharing with the NSA.

On May 10, 2014, at 9:52 AM, Salz, Rich <rsalz@akamai.com> wrote:

Ø  What do I do if the problems are fundamental to the design of CT and the solution is to do something else?

Write up your own document and circulate it.  I’ll be happy to give you some pointers to the second part, once you have the first part.

--
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM: rsalz@jabber.me; Twitter: RichSalz


_______________________________________________
Trans mailing list
Trans@ietf.org
https://www.ietf.org/mailman/listinfo/trans