On 2013-11-25, at 07:08, Eric Burger <eburger@xxxxxxxxxxxxxxxxxx> wrote: > I like where this has ended up. I am pretty convinced that HTTPS is mostly a dead end because of the CA problem. Isn't this at least part of the motivation behind DANE? (I realise DANE requires moving parts in the client and signatures in the published zone, but it seems odd that it hasn't been mentioned.) Joe
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail