> If dnssec usage was wide spread we might reach some decent maturity with the tools and protocols, but I can't see that happening any time soon.
DNSSEC's lack of maturity is a symptom of DNS itself not having a healthy ecosystem. I feel like it'd take as little as a half-percent of the people writing new HTTP tooling to noticeable improve the DNS ecosystem as a whole.
Totally. DNS was always an IETF RFC bound thing. Recently, big players just kinda started making their own decisions.
I'm not sure which is better. Having big companies control the internet is definitely bad, but the pedantry and bikeshedding the IETF offers can be equally bad.
I'd probably rather see the two cooperate/converge, but that's a pipe dream.
This sounds exactly like the age-old debates bemoaning the bureaucracy of government versus the exploitation of industry. People knowing the pain of one always look hopefully at the other.
DNSSEC's lack of maturity is a symptom of DNS itself not having a healthy ecosystem. I feel like it'd take as little as a half-percent of the people writing new HTTP tooling to noticeable improve the DNS ecosystem as a whole.