GreenEngineering3475@lemmy.world to Technology@lemmy.worldEnglish · 1 year agoThe Disappearance of an Internet Domainevery.toexternal-linkmessage-square24linkfedilinkarrow-up10arrow-down10
arrow-up10arrow-down1external-linkThe Disappearance of an Internet Domainevery.toGreenEngineering3475@lemmy.world to Technology@lemmy.worldEnglish · 1 year agomessage-square24linkfedilink
minus-squareNicolaHaskell@lemmy.worldlinkfedilinkEnglisharrow-up0arrow-down1·1 year agoWho issued the key?
minus-squareinterdimensionalmeme@lemmy.mlBannedlinkfedilinkEnglisharrow-up0·1 year agoThe certificate authorities on my ring that I trust. For normal people that’s already included in their OS or browser
minus-squareNicolaHaskell@lemmy.worldlinkfedilinkEnglisharrow-up0arrow-down1·1 year agoSo, an authority? It sounds like this would complicate DNSSEC by requiring the “root keys” to be stored outside the DNS itself.
minus-squareinterdimensionalmeme@lemmy.mlBannedlinkfedilinkEnglisharrow-up0·1 year agoWe already have to have key rings. Centralized DNS is just a second, superfluous layer of authority (and a massive grift) on top
minus-squareNicolaHaskell@lemmy.worldlinkfedilinkEnglisharrow-up0arrow-down1·1 year ago“Centralized DNS” is an oxymoron, we’ll have to agree to disagree
Who issued the key?
The certificate authorities on my ring that I trust. For normal people that’s already included in their OS or browser
So, an authority? It sounds like this would complicate DNSSEC by requiring the “root keys” to be stored outside the DNS itself.
We already have to have key rings. Centralized DNS is just a second, superfluous layer of authority (and a massive grift) on top
“Centralized DNS” is an oxymoron, we’ll have to agree to disagree