[dns-operations] Implementation of negative trust anchors?

Paul Hoffman paul.hoffman at vpnc.org
Thu Aug 22 22:19:57 UTC 2013

On Aug 22, 2013, at 2:47 PM, David Conrad <drc at virtualized.org> wrote:

> A resolver operator deploying an NTA is making an assertion that data behind a name is safe despite protocol indications that is may not be.

Where is that stated? I ask, because it would seem that a better description would be that they are asserting that the data behind a name is unprotected by DNSSSEC.

--Paul Hoffman

More information about the dns-operations mailing list