Viktor Dukhovni wrote: > The rationale for the DANE work is in: > > http://tools.ietf.org/html/draft-ietf-dane-smtp-with-dane-13#section-1.3
I've already read/analyzed all DANE related RFCs and almost all drafts in detail. Also some IETF presentation slides. As already mentioned on the IETF DANE WG list: The main obstacle is currently lack of DNSSEC deployments. And personally I strongly dislike the DNSSEC auto-signing people usually implement in their DNS servers. I think most people on the DNSSEC/DANE track do not take DNSSEC security considerations serious enough. (I assume you personally are an exception.) Ciao, Michael.
smime.p7s
Description: S/MIME Cryptographic Signature
