The problem is, once the ICANNt root is self-signed, the hope of ever revoking that dysfunctional mess as authority is gone. Perhaps the IETF or DoC should sign the root, that way we have a prayer of wresting control from ICANN, as opposed to paying a tax, in perpetuity, for registration services to an unaccountable, unelected, and imperious body? Some of us don't think the UN/EU/ITU are good models for governance. IE: Separation of powers. ICANN/IANA is granted (interim) authority to operate, but some other governing body signs.
-----Original Message----- From: Paul Vixie [mailto:vixie@isc.org] Sent: Thursday, July 24, 2008 9:13 AM To: nanog@merit.edu Subject: Re: Exploit for DNS Cache Poisoning - RELEASED
jmamodio@gmail.com ("Jorge Amodio") writes:
As I mentioned in another message, perhaps its time to get serious about DNSSEC, where are we on this front ?
Still waiting for US-DoC to give ICANN/IANA permission to sign the root zone. -- Paul Vixie
-- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.