Y
Hacker News
new
|
ask
|
show
|
jobs
by
sdkmvx
3742 days ago
The DNS root servers need offline signing. Many servers are in untrusted areas (think intervention from local government).
1 comments
yuhong
3741 days ago
I think DNSSEC already deals with this by offline signing another key that actually signs the DNS root zone.
link