On Tue, 22 Mar 2022, Masataka Ohta wrote:
Partially yes, because DNSSEC is not cryptographically secure.
Wrong. DNSSEC as PKI is not cryptographically secure subject to MitM attacks on CA chains, which is not more difficult than MitM attacks on ISP chains.
I think at this point we have reached a point where your repeated claims lack any merit and you keep refusing to elaborate so we cannot further progress on this topic. Perhaps the chairs can ask you to either substantiate your claims, or for you to stop making false misleading claims. Paul _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
