[dns-operations] Summary: Anyone still using a Sun/Oracle SCA6000 with OpenSSL?

Randy Bush randy at psg.com
Mon Oct 15 18:37:20 UTC 2012

> Be trustee is a key to use HSM or hardware encryption. And because we
> are running a critical Internet infrastructure, I think should be the
> way, be trustee.

that's called security theater.  what is the threat model?  what is the
asset you are protecting against what attack by what adversary?

[ if the cost of the hsm is zero, it adds complexity and hence is a
  security problem not a security solution ]


More information about the dns-operations mailing list