It seems to me they could just as easily issue subdomains and certs for said IPs... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		leoh 7 months ago \| parent \| context \| favorite \| on: Getting ready to issue IP address certificates It seems to me they could just as easily issue subdomains and certs for said IPs and make the whole thing infinitely safer.

parliament32 7 months ago [–]

I could see the opposite argument: domain names who knows, someone could steal it or hack the registrar, registrar could be evil, DNS servers could be untrusted and/or evil or MITM'd... connecting to an IP you're engineering out entire classes of weaknesses in the scheme.

leoh 7 months ago | [–]

Sure, someone could steal google.com I guess

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact