[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Q2: crypto algorithm requirements for DNSSEC
At Thu, 13 Feb 2003 10:07:25 +0100, Olaf Kolkman wrote:
>
> Curiosity: How many embedded devices run a full blown resolver today?
> Will embedded devices run their own verification code or will they set
> up a trust relation with a verifying resolver.
I was thinking more along the lines of a recusive-mode-only resolver
with verification capabilities. Device lets local infrastructure do
the donkey work of iterative resolution, but does its own verifying.
As others have noted, an embedded Linux system may have BIND9,
OpenSSL, OpenSSH, seven elephants, and the kitchen sink, but such
devices tend to have relatively large flash chips (8 or 16 MB).
--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>