[dns-operations] Summary: Anyone still using a Sun/Oracle SCA6000 with OpenSSL?
Randy Bush
randy at psg.com
Mon Oct 15 18:37:20 UTC 2012
> Be trustee is a key to use HSM or hardware encryption. And because we
> are running a critical Internet infrastructure, I think should be the
> way, be trustee.
that's called security theater. what is the threat model? what is the
asset you are protecting against what attack by what adversary?
[ if the cost of the hsm is zero, it adds complexity and hence is a
security problem not a security solution ]
randy
More information about the dns-operations
mailing list