[Certsanddns] Agenda - Trust in DNSSEC - 26 Jan 2011

Tim Moses tim.moses at entrust.com
Tue Jan 18 09:23:38 MST 2011 

CAB Forum inter-industry meeting - Trust in DNSSEC

Facilitated by Phill Hallem-Baker.

(Wed) 26 Jan 2011, times are MST.

Location: 9999 N. 90th Street, Scottsdale, AZ 85258

Agenda -

13:00     13:05     1     Introductory remarks and logistics
13:05     13:15     2     Presentation: "Background and problem statement", Phill Hallem-Baker
13:15     13:30     3     Presentation: "TLS certificates, categories and security services", Robin Alden
13:30     13:45     4     Presentation: "Domain Name Registration System and DNSSEC", Jim Galvin
13:45     15:00     5     Open discussion
15:00     15:15     6     Break
15:15     16:45     7     Open discussion
16:45     17:00     8     Summarization and next steps (PHB)

Go Daddy invites attendees to a dinner at 19:00 MST at "Cowboy Ciao" in Old Town, Scottsdale.

Please let Andy Steingruebl know of any special requirements by end of day 19 Jan 2011 ...

asteingruebl at paypal.com<mailto:asteingruebl at paypal.com>

Please also note that an audio recording of the proceedings may be made solely for the purposes of creating a written record.

Teleconference phone number:

France                                  33-1-76-74-24-92
Germany                             49-69-2222-4871
Israel                                     1-80-9216173
Japan                                    81-3-5539-5185
Netherlands                       31-20-718-8594
Norway                                47-21-59-00-26
Spain                                     34-91-414-25-38
United Kingdom               44-20-3043-2496
USA                                       1-517-466-2084

Passcode:                            1132705

*1 - Help
*3 - Roll call (private)
*6 - Mute and unmute

Reading material:-



DNSSEC overall

--------------



DNSSEC in 6 minutes

http://www.isc.org/files/DNSSEC_in_6_minutes.pdf



DNSSEC Training Course (RIPE NCC)

http://www.ripe.net/training/dnssec/material/dnssec.pdf



Hardening the Internet:

The impact and importance of DNSSEC

http://www.surfnet.nl/Documents/DNSSSEC-web.pdf



Overall DNSSEC Resource Portal

http://www.dnssec.net/







DNS-based Authentication of Named Entities (DANE) WG [Keys-in-DNS (KIDNS) nee keyassure]

----------------------------------------------------------------



Some of the Early KIDNS Proposals

Schlyter & Hoffman

http://www.ietf.org/proceedings/79/slides/kidns-0.pdf



DNS-centric PKI

Turner, Housley, & Polk

http://www.ietf.org/proceedings/79/slides/kidns-1.pptx



Minutes of KIDNS BOF (pre-DANE WG) IETF-79 Beijing Nov-2010 http://www.ietf.org/proceedings/79/minutes/kidns.txt



DANE WG charter

DNS-based Authentication of Named Entities (Active WG) http://tools.ietf.org/wg/dane/charters







Dan Kaminsky's Rationale for Keys-in-DNS  & Phreebird approach

-------------------------------------------------------------



The DNSSEC Diaries, Ch. 1: Names And Places http://dankaminsky.com/2010/12/13/dnssec-ch1/



The DNSSEC Diaries, Ch. 2: For Better or Worse, How The TXT Was Won http://dankaminsky.com/2010/12/14/dnssec-ch2/#comments



The DNSSEC Diaries, Ch. 3: Contradictions http://dankaminsky.com/2010/12/18/the-dnssec-diaries-ch-3-contradictions/



The DNSSEC Diaries, Ch. 4: A Schema For TXT http://dankaminsky.com/2010/12/19/dnssec-ch4/



The DNSSEC Diaries, Ch. 5: Implicit Policies, Explicit Public Keys http://dankaminsky.com/2010/12/20/dnssec-ch5/



Tim Moses
+1 613 270 3183

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://cabforum.org/pipermail/certsanddns/attachments/20110118/ff881838/attachment-0001.html

More information about the Certsanddns mailing list