[128286] in North American Network Operators' Group
Re: Web expert on his 'catastrophe' key for the internet
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Thu Jul 29 23:10:11 2010
To: Jorge Amodio <jmamodio@gmail.com>
In-Reply-To: Your message of "Thu, 29 Jul 2010 20:19:45 CDT."
<AANLkTin2RGZzgNVOOifNNk9F3Z7aURMo8NvT4HsdJWBq@mail.gmail.com>
From: Valdis.Kletnieks@vt.edu
Date: Thu, 29 Jul 2010 23:09:15 -0400
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--==_Exmh_1280459355_4712P
Content-Type: text/plain; charset=us-ascii
On Thu, 29 Jul 2010 20:19:45 CDT, Jorge Amodio said:
> I suggest that it should be seriously considered to revoke the role of
> RKSH from the person that used that role to obtain publicity and self
> promotion, and request the immediate return of all cryptographic
> material. This is not something to get the guy on a limo an parade him
> on the streets of his local town or have now every one included on the
> public list interviewed by news outfits.
Well, there's a bit of a problem - you have to make the list of key holders
known, so that all and sundry can verify for themselves that ICANN (or any
other single organization, for that matter) doesn't have all the marbles.
A second point is that if you have 7 keyholders who are not well known, they're
actually *easier* targets than if they're well known public figures. Think
about that for a bit - who's easier to coerce without being detected, the guy
who lives in the apartment downstairs from me, or somebody who's out in the
open and identified as important?
A pretty good article that puts a lot of the rest of it back into perspective:
http://www.digitalsociety.org/2010/07/fantasy-role-playing-has-no-place-in-dnssec
--==_Exmh_1280459355_4712P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFMUkJbcC3lWbTT17ARAqkYAJ0fAVZse/4GFg2c3w5XgFW3TctyYQCbBHKd
jamUd+42JNa8nsYh72Gao5Y=
=Zox8
-----END PGP SIGNATURE-----
--==_Exmh_1280459355_4712P--
