Attacking networks using DHCP, DNS - probably kills DNSSEC

Peter Gutmann pgut001 at cs.auckland.ac.nz
Tue Jul 1 05:01:40 EDT 2003


William Allen Simpson <wsimpson at greendragon.com> writes:

>Would this be the DHCP working group that on at least 2 occasions when I was
>there, insisted that secure DHCP wouldn't require a secret, since DHCP isn't
>supposed to require "configuration"?

Given that their goal is zero-configuration networking, I can see that being
required to provide a shared secret would mess things up a bit for them.  It'd
be a bit like PKIX being asked to make ease-of-use a consideration in their
work, or OpenPGP to take X.509 compatibility into account.

Peter.

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list