Ohta-san, On Fri, 2009-06-05 at 21:32 +0900, Masataka Ohta wrote: > I mention transport security merely because it is still required > with DNSSEC, because administrative security of DNSSEC is > cryptographically weak. I think we all understand that it is possible to inject bad data into the DNS at the parent. What I do not understand about this comment is how transport security can help in that case. Can you please explain? Thanks, -- Shane _______________________________________________ Ietf@xxxxxxxx https://www.ietf.org/mailman/listinfo/ietf