On Fri, 2 Sep 2005, Harald Tveit Alvestrand wrote: > > Flight of imagination: DNSSEC-Signed records (with the SIG/KEY chain in > additional data?) would seem to be one possibility to "prove" that the data > being presented was "legitimate" under DNS delegation rules, even when you > don't have a present connection to the Internet. How can you verify the signature without an Internet connection with which to fetch the key? Why does it make sense to strive for globally-unique names when all that matters is uniqueness on the local link? Tony. -- f.a.n.finch <dot@xxxxxxxx> http://dotat.at/ BISCAY: WEST 5 OR 6 BECOMING VARIABLE 3 OR 4. SHOWERS AT FIRST. MODERATE OR GOOD. _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf