Laurie: Improving SSL certificate security
Laurie: Improving SSL certificate security
Posted Apr 3, 2011 12:10 UTC (Sun) by Cyberax (✭ supporter ✭, #52523)In reply to: Laurie: Improving SSL certificate security by Lennie
Parent article: Laurie: Improving SSL certificate security
DNSSEC signatures can't 'expire', they just authenticate answers without any additional functionality.
Signatures can become invalid if public keys disappear from relevant DNS servers. But this has nothing to do with TTL and caches.