Metadata Distribution Subcommittee of TAC

["Caskey, Paul" <>]

I don't see the /etc/hosts model ever achieving global scale, but I suppose 
we have to crawl before walking and MDX would at least be a significant 
improvement over current methods, IMHO.


On Aug 15, 2013, at 7:21 PM, "Michael R. Gettes" 
<<mailto:>>
 wrote:

Really? Do i understand this to mean there is not a desire to move away from 
the /etc/hosts model?  Seriously?

/mrg


-------- Original message --------
From: Tom Scavo 
<<mailto:>>
Date: 08/15/2013 20:04 (GMT-05:00)
To: 
<mailto:>
Subject: [md-distro] avoiding dynamic metadata queries


Some lingering thoughts after today's call...

I'd prefer to avoid dynamic metadata queries if at all possible. I
haven't yet heard a strong argument in favor of queries (thank god). I
think there is much we can do without venturing down that path.

OTOH, I'm completely in favor of standardizing MDX, but we need that
for addressing purposes, not as a query language.

I'm strongly in favor of moving the signing key online (in a trusted
HSM) and automating the signing process. That's probably the single
most important thing we can do.

Tom