He was one of only seven people worldwide that held “the keys to the Internet” and the only person in USA. I don’t know exactly what that means, but I remember reading at the time that these seven people were entrusted with the tools to resurrect the Internet, should it be taken down.
That's all in reference to DNSSEC. All that is mostly overblown nonsense by the DNSSEC people to try to get people to actually use it by making it sound cooler than it actually is. It's just mostly a way to encrypt DNS queries and "zones." It's main selling point will almost certainly be replaced with other protocols like "DNS over HTTPS."
Also, the key system is an escrow system. Any 4 of the 7 people can activate the recovery key, which is then used to key a hardware encryption module, so it can regenerate the root DNSSEC keys should they be lost. This is another reason the system won't last, it's way too cumbersome for too little value... and to even use those keys you need access to the HSM which is kept in a secured location.
You can find the video and the original notes, I believe, of the original "DNSSEC Key Signing Ceremony." If you can stand the ceremoniousness of the entire affair.
That's all in reference to DNSSEC. All that is mostly overblown nonsense by the DNSSEC people to try to get people to actually use it by making it sound cooler than it actually is. It's just mostly a way to encrypt DNS queries and "zones." It's main selling point will almost certainly be replaced with other protocols like "DNS over HTTPS."
Also, the key system is an escrow system. Any 4 of the 7 people can activate the recovery key, which is then used to key a hardware encryption module, so it can regenerate the root DNSSEC keys should they be lost. This is another reason the system won't last, it's way too cumbersome for too little value... and to even use those keys you need access to the HSM which is kept in a secured location.
You can find the video and the original notes, I believe, of the original "DNSSEC Key Signing Ceremony." If you can stand the ceremoniousness of the entire affair.
Anyways..
Thanks for adding this!