[Cryptography] Against against DNS (Re: New SSL/TLS certs to each live no longer than 47) days by 2029
Nico Williams
nico at cryptonector.com
Wed Apr 23 18:01:17 EDT 2025
On Wed, Apr 23, 2025 at 02:45:53PM -0700, Seth David Schoen wrote:
> Nico Williams writes:
> > CT is one of only two reasons (IMO) to think WebPKI superior to DNSSEC.
> > The other is PQ: DNSSEC is more constrained as to PQ PK scheme choices
> > than WebPKI because larger keys and signatures will not be practical in
> > DNS.
>
> The other related thing is that the web PKI is overseen by a small group
> of mostly browser people, who are extremely pro-privacy and not engaged
> in politically balancing various stakeholder interests like ICANN does (or
> directly deriving profit from the system like some domain registries do).
> This is a relatively recent development in the history of the two systems,
> and also a relatively contingent one.
That's fair. We can have the best of both worlds by using DNSSEC and
WebPKI together by using the TLSA RR usage PKIX-TA, and the CA/B Forum
could dictate that browsers that use DANE should only trust PKIX-TA
usage.
Nico
--
More information about the cryptography
mailing list