[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] SKS apocalypse mitigation
|
From: |
Kiss Gabor (Bitman) |
|
Subject: |
Re: [Sks-devel] SKS apocalypse mitigation |
|
Date: |
Sat, 5 May 2018 11:55:09 +0200 (CEST) |
|
User-agent: |
Alpine 2.11 (DEB 23 2013-08-11) |
> > Requests may be "iterative" or "recursive" (words are stolen from DNS).
> > Users send recursive request: "I don't care how many peers
> > you ask, but tell me the key with all signatures."
>
> The DNS has a hierarchical structure that allows the authoritative source for
> data to be found within a small number of requests that depends on the number
> of components in the fqdn. There is no such structure in sks, and no way of
> knowing that all I no has been found, so the *best* case scenario is that
> every server has to be polled for every request.
Suboptimal solutions are also acceptable.
I don't think we alwys need the best (and most expensive way).
"Almost the best" is good enough in most of practical cases.
However some simulation of spreading keys and signatures would
be really useful.
Gabor
- Re: [Sks-devel] SKS apocalypse mitigation, Andrew Gallagher, 2018/05/03
- Re: [Sks-devel] SKS apocalypse mitigation, Phil Pennock, 2018/05/05
- Re: [Sks-devel] SKS apocalypse mitigation, Andrew Gallagher, 2018/05/05
- Re: [Sks-devel] SKS apocalypse mitigation, Phil Pennock, 2018/05/05
- Re: [Sks-devel] SKS apocalypse mitigation, Andrew Gallagher, 2018/05/05
- Re: [Sks-devel] SKS apocalypse mitigation, Andrew Gallagher, 2018/05/05
- Re: [Sks-devel] SKS apocalypse mitigation, Phil Pennock, 2018/05/06
- Re: [Sks-devel] SKS apocalypse mitigation, Andrew Gallagher, 2018/05/23
- Re: [Sks-devel] SKS apocalypse mitigation, Ari Trachtenberg, 2018/05/05
- [Sks-devel] Dumps/importing & de-peering (WAS: Re: SKS apocalypse mitigation), brent s., 2018/05/05