| ▲ | thayne an hour ago | |||||||||||||
Probably the most common reason to use DNSSEC is to check a box on a list of compliance rules. And I don't think this will change anything for people who need DNSSEC for compliance. | ||||||||||||||
| ▲ | tptacek 35 minutes ago | parent | next [-] | |||||||||||||
There's no commercial compliance regime that requires DNSSEC (FedRAMP might be the only exception --- I'm uncertain about the current state of FedRAMP DNSSEC rules --- but that makes sense given that DNSSEC is a giant key escrow scheme.) | ||||||||||||||
| ▲ | pocksuppet 32 minutes ago | parent | prev [-] | |||||||||||||
Probably the most common reason to use TLS is to check a box on a list of compliance rules. Is that bad? | ||||||||||||||
| ||||||||||||||