IETF Logo Mail Archive

Re: [Add] Proposed charter and BoF request for IETF 106

Eric Rescorla <ekr@rtfm.com> Wed, 09 October 2019 11:59 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA6061200B7 for <add@ietfa.amsl.com>; Wed, 9 Oct 2019 04:59:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BQj2skPAdpOd for <add@ietfa.amsl.com>; Wed, 9 Oct 2019 04:59:08 -0700 (PDT)
Received: from mail-lf1-x12e.google.com (mail-lf1-x12e.google.com [IPv6:2a00:1450:4864:20::12e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8883712008B for <add@ietf.org>; Wed, 9 Oct 2019 04:59:07 -0700 (PDT)
Received: by mail-lf1-x12e.google.com with SMTP id x80so1444560lff.3 for <add@ietf.org>; Wed, 09 Oct 2019 04:59:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=jknOW6G1cymt35Kzedav9USb7QJUIh0yIc27e5IY4zs=; b=c5vvtlGMyuDuj16D0sPZ3SdhELA9O/C1FtWhW28+WZFbfRkdfDAtl8UCpNQI55khU6 W/nRsNDeHkGgnLs3bkogHlM4OBHjPd965+c0fJo3b48tFtFa1QKdiHt5pVsStC/oDX8d XPumxfTVaCd1edFp2Nl01wn5awe08Y2GApAkv8WE4RQlrzLBZbZLMZzJMCeid6lKuVHH cI5DsvifjsSRUTfMwXi1mmCqsGggk75cqdTaKbn/JpMBtqQ4uEYgdzKLAAAoftfgO3FU QuEcuOvY1eJQFBKySu7NcPzg1roS6KSTLwIPGwxCw8y3i6zUn+CpXLRJvmS3meoR/9dp fbjA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=jknOW6G1cymt35Kzedav9USb7QJUIh0yIc27e5IY4zs=; b=VLZDvRh8MceMH7U2mqhmwHMPhjFb4TTbIm7lE1gkCQn+xR321jlrNE0OoFnuWtFiL/ TbV0l0h7CZ/SI0FElN033e62huR5b5b13RcQy4cqZYQ9T2CKMOayZALPMOXnxDiD3W07 YES9ZBNiA19Gr906lvYeSSzAGkbiMDY10SG7DR8zyrhNdDl9RPdRH8nLUh3/R6K9o14/ C7qdCiZTNUikzaIXNZIGJCuXek9nSQghpzs1IBoJHJ/HGhcuxr1fqb31luQw0zfbjhYu /Igaiyn4lWPm2ncnFcM+lzbJMUH8rxapki1Z9piivsZl8uz8HVjPnpa+fPyksbl2V9Ue vbOw==
X-Gm-Message-State: APjAAAUfs/gyv6xQY2QJAwi3zvCEqi4gEIWe+SWBDD+4PLxsgkQ1xV5q pRd+jHZzHEzL0F3dZq8TpTLV5Iv5f53IVS0rn8E3uQ==
X-Google-Smtp-Source: APXvYqzv3XANbOaHym/lx41evfGkVczznxnRSiz/tuvTCkPwNaj3kAxGKsSrRjyCLcqHgfyYp/gK//6ojK7PkSQ0nyQ=
X-Received: by 2002:ac2:4a75:: with SMTP id q21mr1826846lfp.94.1570622345563; Wed, 09 Oct 2019 04:59:05 -0700 (PDT)
MIME-Version: 1.0
References: <CALaySJLxXVuHQNfTnaeKZ_R9xtBYWfbta+A1bWcE-ZQZwd3VZg@mail.gmail.com>
In-Reply-To: <CALaySJLxXVuHQNfTnaeKZ_R9xtBYWfbta+A1bWcE-ZQZwd3VZg@mail.gmail.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Wed, 09 Oct 2019 04:58:27 -0700
Message-ID: <CABcZeBMkAFZW9mWjw92v+OR0Fa8ed+P80yc78eY07hCpsCNY6Q@mail.gmail.com>
To: Barry Leiba <barryleiba@computer.org>
Cc: ADD Mailing list <add@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000fbe93c05947902c4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/1DWMUHn5UofoTzV0McatUSmoDBk>
Subject: Re: [Add] Proposed charter and BoF request for IETF 106
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Oct 2019 11:59:11 -0000

Barry,

I took a first look at your proposed ABCD charter. Thanks for
proposing something.

At a high level, I think there are some good areas for discussion
here, but they're going to get swamped by the inclusion of a bunch of
contentious topics we're not likely to get resolution on.

I think this would be much stronger if it focused entirely
on technical matters on which there is at least some agreement,
specifically:

- Signalling that the network has DoH support, who provides it,
  and (potentially) what their policies are.

- Signaling that the network has some kind of filtering policy
  that might make the application think twice about using
  DoH.

- Something like the apple proposal that does "steering" of
  traffic to the right resolver.

Note that these mechanisms should generally not tell apps what
policies they should follow when they see these signals.


These seem to be on your list below. I think we should stay away from
anything that is about specifying best current practices because as
far as I can tell all but the most trivial ones (here is how to safely
run a TLS server or something) are contested. For instance, even
retention period has very strong views on both sides.


> Together, these developments may represent
> a set of shifts depending on how the new protocols are deployed: from
> cleartext to encrypted transports; from use of unique port numbers for
> DNS resolution to ports that support significant other traffic (e.g.,
> HTTPS); from network operator control of DNS configuration to control by
> clients, third-party resolvers, or others; and from the use of a large,
> dispersed set of network operator resolvers to a smaller set of more
> centralized resolvers operated by other parties.

The word "may" is doing a lot of work here. In particular, while I
realize that this centralization argument has been repeatedly raised,
it's not really a point of consensus. Consider that in the United
States, the ISP market is dominated by a very small number of players,
with two companies, Charter and Comcast, having the vast majority of
the market
(
https://www.statista.com/statistics/217348/us-broadband-internet-susbcribers-by-cable-provider/
)
Because residential customers generally use the ISP resolver, this
market is already highly centralized. It's true that there are a lot
of much smaller enterprise resolvers, but every major
application-level DNS rollout I have seen proposed attempts to
preserve that situation.



> This potential set of shifts raises many questions given the long history
> and current status of DNS operational practices. Network operators have
> historically used DNS services for a variety of purposes beyond simple
> query resolution: to mitigate network and security threats, to enforce
> enterprise policy, to provide parental controls and other filters, and to
> comply with relevant laws and regulations, among others.

This list of practices would be much more accurate if it included the
resolver-level DNS practices that we are trying to mitigate using DoH,
including NXDOMAIN synthesis and collection of user browsing history
data.


> Achieving these
> objectives while providing confidentiality and tamper-resistance will
> generally require that network operators shift to one of the available
> encrypted transports for their resolvers and that clients include
> configuration options to select them.

This entirely misses the point, which isn't just to do a lot of encryption
but to provide security for the user. Just having network operators
transition to secure transports while continuing their current practices
does not address the issue.


> Specific initial areas of focus include:
>
> - Resolver discovery
> - Expression of resolver policy
> - Query routing in the presence of resolver choice
> - Best Current Practices for the deployment and operation of encrypted
DNS transport

This seems like it leaves all of the contested issues firmly
in scope. I can't imagine how we're going to get consensus on
best current practices, when we can't even agree on the terms
for resolver selection.

-Ekr

On Wed, Oct 9, 2019 at 12:39 AM Barry Leiba <barryleiba@computer.org> wrote:

> Hi, all,
>
> The IESG has worked up a proposal for a possible working group, which
> we're tentatively calling "ABCD", for "Application Behavior
> Considering DNS".  We can discuss the charter proposal here, and
> expect to approve a working-group-forming BoF for Singapore.
>
> I realize that the charter proposal isn't going to please everyone
> (and perhaps will please no one), but it's something that, at a first
> level of review, the IESG accepts and will likely want to move forward
> with.
>
> See the proposal here:
>       https://trac.tools.ietf.org/bof/trac/wiki/WikiStart
>
> I am also going to remove the moderation of this list for now.  Let's
> see how that goes.  Please continue being calm, thoughtful, and
> respectful (and thanks for having done that during the moderation
> period).
>
> Barry
>
> --
> Add mailing list
> Add@ietf.org
> https://www.ietf.org/mailman/listinfo/add
>

v2.23.0 | Report a Bug | By Email