Re: WebID-ISSUE-32 (nodns_webid): URIs with IP addresses and security [WebID Spec] from Nathan on 2011-02-15 (public-xg-webid@w3.org from February 2011)

From: Nathan <nathan@webr3.org>
Date: Tue, 15 Feb 2011 13:32:41 +0000
To: WebID Incubator Group WG <public-xg-webid@w3.org>
Message-ID: <4D5A8079.6000704@webr3.org>

IPSec / IPSECKEY [RFC4025] ?

WebID Incubator Group Issue Tracker wrote:
> WebID-ISSUE-32 (nodns_webid): URIs with IP addresses and security [WebID Spec]
> 
> http://www.w3.org/2005/Incubator/webid/track/issues/32
> 
> Raised by: Henry Story
> On product: WebID Spec
> 
> A URL need not contain a domain name, and so need not be tied to DNS. For example:
> 
>    http://29.45.62.12/peter#me
> or
>     https://29.45.62.12/peter#me
> 
> What are the advantages?
>   - Does it really bypass DNS?  Does anyone ever get an IP address without a domain name? 
> 
> But how would security for such URLs work? 
> 
> If we think of pure https URLs the following questions arise
> 
>   - Do CAs certify IP addresses?
>   - The advantage of placing public keys in DNSSEC with DANE would be lost
> 
> So would this require a completely new way of securing the IP address?
> 
> 
> 
> 
>

Received on Tuesday, 15 February 2011 13:33:32 UTC