nanog mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [arin-announce] ARIN Resource Certification Update

From: Roland Dobbins <rdobbins () arbor net>
Date: Tue, 25 Jan 2011 11:52:03 +0700

On Jan 25, 2011, at 11:35 AM, Christopher Morrow wrote:


thinking of using DNS is tempting



The main arguments I see against it are:

1.      Circular dependencies.

2.      The generally creaky, fragile, brittle, non-scalable state of the overall DNS infrastructure in general.

Routing and DNS, which are the two essential elements of the Internet control plane, are e also its Achilles' heels.  
It can be argued that making routing validation dependent upon the DNS would make this situation worse.

The main reasons for it are those Danny stated:

1.      DNS exists.

2.      DNSSEC is in the initial stages of deployment.

3.      There's additional relevant work going on which would make DNS more suitable for this application.

4.      Deployment inertia.

------------------------------------------------------------------------
Roland Dobbins <rdobbins () arbor net> // <http://www.arbornetworks.com>

Most software today is very much like an Egyptian pyramid, with millions
of bricks piled on top of each other, with no structural integrity, but
just done by brute force and thousands of slaves.

                          -- Alan Kay
Previous By Date Next
Previous By Thread Next

Current thread: