• lolcatnip@reddthat.com
    link
    fedilink
    English
    arrow-up
    63
    arrow-down
    7
    ·
    2 years ago

    This is why you don’t let your domain registration lapse. It’s not the only way computers on the internet verify each other’s identity, but a hell of a lot of internet security features are based around domain names, so keeping yours functioning is a very big deal.

    • finn@lemmy.world
      link
      fedilink
      English
      arrow-up
      56
      arrow-down
      4
      ·
      2 years ago

      Domain registration ≠ internet security. Root of trust is in cryptographic keys, not domains. DNS is not the security cornerstone you make it out to be. PKI says hi!

      • lolcatnip@reddthat.com
        link
        fedilink
        English
        arrow-up
        6
        ·
        2 years ago

        Email is tied to domains. TLS is tied to domains. CORS is tied to domains. OAuth is tied to domains. Those are just four things I can think of while half asleep. Here’s one recent example of how screwing up a domain name is enough by itself to cause a security breach.

        Cryptography is not security any more than domain names are; both are facets of how security is implemented but there’s no one system that makes the Internet secure.