Re: dns-0x20.txt

[Edward Lewis <Ed.Lewis@neustar.biz>]

An off-hand comment, this doesn't do a whole lot for the reverse map. 
(Unless I am missing something.)  It doesn't hurt though.  Probably a 
mention in the security section on that topic.


At 17:43 +0000 2/26/08, Paul Vixie wrote:
> i think i've missed the cutoff for new -00 drafts, but, this is topical and
> i'd like to discuss it anyway, even if it can't be on the philly agenda.
>
>                                     Abstract
>
>       The small (16-bit) size of the DNS transaction ID has made it a
>       frequent target for forgery, with the unhappy result of many cache
>       pollution events throughout Internet history.  Even with perfectly
>       and unpredictably random transaction ID's, random and birthday
>       attacks are still theoretically feasible.  This document describes a
>       method by which an initiator can improve transaction identity using
>       the 0x20 bit in DNS labels.  The method described here has already
>       been implemented, and is running in production.
>
> for more, go to <http://sa.vix.com/~vixie/dns-0x20.txt>.
>
>
> --
> to unsubscribe send a message to namedroppers-request@ops.ietf.org with
> the word 'unsubscribe' in a single line as the message text body.
> archive: <http://ops.ietf.org/lists/namedroppers/>

--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Edward Lewis                                                +1-571-434-5468
NeuStar

Never confuse activity with progress.  Activity pays more.

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>