> -Original Message-
> From: Olafur Gudmundsson
> Sent: Wednesday, July 10, 2019 6:29 PM
> To: Hollenbeck, Scott
> Cc: dnsop@ietf.org
> Subject: [EXTERNAL] Re: [DNSOP] Security Considerations Suggestion for
> draft-ietf-dnsop-rfc7816bis
>
>
> Hi Scott, some nits below
> > On Jul 8, 2019,
One of the intended goals of ANAME is to improve interoperability of
onboarding onto CDNs for URLs at a zone apex, such as “http(s)://example.com
”.
The TL;DR is that ANAME is unlikely to allow interoperability here unless
authorities are willing to effectively and scalablely do recursion-with-ECS
On Fri, 12 Jul 2019, Paul Wouters wrote:
>
> I find the term "security policy", a bit unnerving here. A DNS server
> is either secure (and tells the truth), or it is not secure (and tells
> lies). There is no "better". Some people say lying is more "secure for the
> user", but that can really on
