OpenDNS today announced it has adopted DNSCurve to secure DNS

Michael Sinatra michael at rancid.berkeley.edu
Mon Mar 8 18:03:26 UTC 2010


On 3/7/10 10:46 AM, Danny Mayer wrote:

> Autokey is not a cryptographic signature protocol. It *is* a
> authentication protocol for the server only and there are a number of
> exchanges that need to be done to complete the authentication of the
> server. You cannot compare this with DNSSEC and nothing in NTP is encrypted.

Correct, the comparison was only to point out that Autokey, like DNSSEC, 
doesn't encrypt payload because it doesn't need to.

michael



More information about the bind-users mailing list