[162203] in North American Network Operators' Group
Re: public consultation on root zone KSK rollover
daemon@ATHENA.MIT.EDU (Randy Bush)
Fri Apr 5 19:10:32 2013
Date: Sat, 06 Apr 2013 08:10:19 +0900
From: Randy Bush <randy@psg.com>
To: David Conrad <drc@virtualized.org>
In-Reply-To: <97EF19E7-AB4B-4472-9F1D-3FE3BA176A0E@virtualized.org>
Cc: North American Network Operators' Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
< rant >
> The point of the wildly over-engineered root key signing ceremony is
> to build trust by publicly demonstrating at every step there is no
> opportunity for intentional or accidental badness to occur without
> being noticed.
at some point, long passed, the more pomp, the less safe i feel. there
is protecting against technical/engineering threats and protecting
against layer 8 through 11. through complexity, it compromises the
technical protection to go overboard on the lawyer defense.
from this bottom feeder's pov, icann, verisign, doc, ... are too often
the layer 8 through 11 threat than part of the engineering solution.
> In any event, if you haven't already I would encourage you to provide
> comments at the URL Joe referenced.
definitely. after all, commenting on icann insanities has had such
serious beneficial effect for the good of the internet in the past.
randy
