« What year is it?? | Main | I'll take three, please »

April 08, 2007

Arguing Against DNSSEC

Thomas Ptacek has an excellent series of articles over on Matasano making a case against DNSSEC.

It's a collection of articles that has stirred up some debate, but it's also a decent primer on the topic, and I have to agree with a lot of the points Ptacek makes. Specifically, he states "DNSSEC solves a non-problem", which I agree with, though I might say that DNSSEC solves a problem better solved by other means. In other words (and Ptacek illustrates this throughout his article) DNSSEC "shouldn't be responsible" for solving the problems it seems to be directed toward solving.

I think Ptacek's point is spot-on that there are already better, more secure "tools" for addressing these issues.

Whatever your feelings, the series is a worthwhile read.

Tags: ,


Creative Commons License This work is licensed under a
Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 License.

Posted on April 08, 2007 |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d8341c077053ef00d83543557f53ef

Listed below are links to weblogs that reference Arguing Against DNSSEC:

Comments

blog comments powered by Disqus