IETF Logo Mail Archive

Re: [Add] What to do in this potential working group

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Wed, 21 August 2019 12:45 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4B1A612091E for <add@ietfa.amsl.com>; Wed, 21 Aug 2019 05:45:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=es8z/VS3; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=PJMXIbxb
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cgib2U25FQk0 for <add@ietfa.amsl.com>; Wed, 21 Aug 2019 05:45:06 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B301120922 for <add@ietf.org>; Wed, 21 Aug 2019 05:45:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3580; q=dns/txt; s=iport; t=1566391506; x=1567601106; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=5DmqSJyw9lZo4KiSXYNUrI20kLreae9P9ZQ7GShOWBk=; b=es8z/VS36SyMHKFdL7WmNRrM5lqaICScZHFgaCqkwxlPj+HcduuZU40C eU7kc1Bnr6Uv8PNH1m6zW+MV3tS1KTWUgdNBk61BklOAtRnmPzTg3nxPd z1j0/ZZAa+CbVz81jNA3IP+711ymbOg8PqQ7J0PzhysYEicRdCC5ZOhwN M=;
IronPort-PHdr: 9a23:Or6AnhN0jtirGRsqVkol6mtXPHoupqn0MwgJ65Eul7NJdOG58o//OFDEu60/l0fHCIPc7f8My/HbtaztQyQh2d6AqzhDFf4ETBoZkYMTlg0kDtSCDBj2Mu/sZC83NM9DT1RiuXq8NBsdFQ==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BxAABMPF1d/5tdJa1lHAEBAQQBAQcEAQGBVAYBAQsBgURQA21VIAQLKoQfg0cDimaaQYEugSQDVAkBAQEMAQEYCwoCAQGEPwIXgkUjNQgOAgUBAQQBAQMBBgRthScMhUsCBAEBEBERDAEBLAsBDwIBCBIIAiYCAgIlCxUCDgIEDgUigwABgWoDHQECDJ8oAoE4iGFzgTKCewEBBYJHglAYghYDBoEMKAGLSx0YgUA/gTgfgh4uPoJhAQGBYReCdDKCJo8XnEIJAoIdi2WIVBuYRqVpAgQCBAUCDgEBBYFSAjSBWHAVOyoBgkGCQoNyhRSFP3KBKYt+AQE
X-IronPort-AV: E=Sophos;i="5.64,412,1559520000"; d="scan'208";a="606324299"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 21 Aug 2019 12:44:58 +0000
Received: from XCH-RCD-017.cisco.com (xch-rcd-017.cisco.com [173.37.102.27]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id x7LCiwIA000767 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 21 Aug 2019 12:44:58 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-RCD-017.cisco.com (173.37.102.27) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 21 Aug 2019 07:44:57 -0500
Received: from xhs-aln-001.cisco.com (173.37.135.118) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 21 Aug 2019 08:44:54 -0400
Received: from NAM02-SN1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Wed, 21 Aug 2019 07:44:54 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kg7W53cZC2ToVmPw5IpBIoCHibXoWx1V/AnscK8jU6W31ao6EBESmxwJe7napEWEq/HiP3ImDK3eNmdjhRo1Eqztwbb5XSSvYXw8L0W5g1HXEC+AK7usoLwEjAJWN2s3t2GX3sBaSYd3jHrL8rODBMC3spknuWgN0aWn649n9X13eVKy4agUa+XqBNV2vyKv4OdAtqlPYsa92NQPt0Yue0+XCUg2vyLQ8MUYwTlUbYDUErr8DxldO3ZHwZkD2K2JTAKcvk6FPyLRLBJyarfJXS+dC5vN41pLSvFBEGf1cIuDZHblFaM7KNUPBGOAgCfc6JL22CBdOEwH3fNoY26sjg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5DmqSJyw9lZo4KiSXYNUrI20kLreae9P9ZQ7GShOWBk=; b=em1mP3bnComH5xzKPH96IIy7CgG6NDxX7Hei3hIJNtshjrM1hty37i/Q0+ZBBxz45jYq2AapB4cDljg0gUqtjzjNTrhSE7NA9E3nIuYc87/zPn1bFoIQdyiXN5QK0/FyQ/yqQFd1pwBtses3HtCr1JzXrV/Uwx/Jfm+jjbFiDWHV2e9a+WrBJOP0tOByeHe4UJ/Va18qnkRqq43Or0fIBHFczW1iLlC2JorwAXIbZgtwCdXvliAa1n2ZQm6ZYArxy3dkQrjxWsrIX4H4o5SO9g8b2Ig4GeqpITcsXHbgzoPL7CrlX4l+mX+BIZep6FvrfGNbiKH+DCQK4GGmCSpVNw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5DmqSJyw9lZo4KiSXYNUrI20kLreae9P9ZQ7GShOWBk=; b=PJMXIbxb35UHmpqlUUU4yQgRXPO2FqpL4Wexrh5qK2JIwbBPROYF2euVm7a3P61Jsh5+lIO3BPsmsQkv53+uEHiN+Xhs9VGcq2FYeHKNIphGghM+bhCQFdslNcKPva4eUd96mdNHozdUpBB+RQ+phvsfTO3A5qBVix1BO4tgiIE=
Received: from MN2PR11MB4144.namprd11.prod.outlook.com (20.179.150.210) by MN2PR11MB4365.namprd11.prod.outlook.com (52.135.38.32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2178.18; Wed, 21 Aug 2019 12:44:53 +0000
Received: from MN2PR11MB4144.namprd11.prod.outlook.com ([fe80::d5c4:be39:66cb:449b]) by MN2PR11MB4144.namprd11.prod.outlook.com ([fe80::d5c4:be39:66cb:449b%6]) with mapi id 15.20.2178.018; Wed, 21 Aug 2019 12:44:53 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Jari Arkko <jari.arkko@piuha.net>
CC: ADD Mailing list <add@ietf.org>
Thread-Topic: [Add] What to do in this potential working group
Thread-Index: AQHVV5I7hsqAJe/wcEqNONbR1WqNNqcFRa+AgAAo84CAAEA1gA==
Date: Wed, 21 Aug 2019 12:44:53 +0000
Message-ID: <079D125A-B2F0-41B3-A6F6-CAAFA7F51E6D@cisco.com>
References: <A1128702-1E19-4657-9740-E84AE09992F2@piuha.net> <CABcZeBMfOTjq-8hDDoKMtJvfHUA5nC8o60zuk-2Xe-ZhfwriJQ@mail.gmail.com> <766112E1-F532-4C6B-8CA8-A096671E02EE@piuha.net>
In-Reply-To: <766112E1-F532-4C6B-8CA8-A096671E02EE@piuha.net>
Accept-Language: fr-BE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1c.0.190812
authentication-results: spf=none (sender IP is ) smtp.mailfrom=evyncke@cisco.com;
x-originating-ip: [2001:420:c0c1:36:f552:172b:da2f:5e62]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 57334461-9bcb-48b9-9adb-08d726355d74
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR11MB4365;
x-ms-traffictypediagnostic: MN2PR11MB4365:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <MN2PR11MB43653F5FEA006DC62A20D7CAA9AA0@MN2PR11MB4365.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0136C1DDA4
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(376002)(136003)(396003)(346002)(366004)(189003)(199004)(5660300002)(186003)(66574012)(8676002)(102836004)(36756003)(2906002)(6116002)(8936002)(33656002)(58126008)(81156014)(81166006)(316002)(71200400001)(7736002)(2616005)(14444005)(4326008)(476003)(99286004)(6916009)(446003)(11346002)(6306002)(6512007)(76176011)(6246003)(6486002)(6436002)(14454004)(86362001)(486006)(71190400001)(256004)(478600001)(53936002)(966005)(229853002)(305945005)(76116006)(91956017)(66946007)(6506007)(25786009)(64756008)(66446008)(66476007)(66556008)(46003); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB4365; H:MN2PR11MB4144.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: TyJStdd8Tkaa9WSHAgmL1LxZtG0hs/gasIDlAExS/JKlf83XtEqyqhv1pR/w7ZF7RabWbIkqHzniZz0Y1XVWHjaYtdZCwLDVOIFmG60SI5FEzON9yEXeG39G2hJbXyuLYpMGVg+4fs2vOPzNasq6GJqf99TabRUqs5nSA0CpgMqDRL6qGv2fs4P9ywVyEewGwXpB0cZzUXI+Mc/iyW6YTTGZrNitstTK0IIqgXBz/0MzrTUQOsiIwtxtshM2Je/VDFfVClson29pGBjJ1W1EeO7B/ZvtVUuHbuLjPW4xs5UjSUSh/fNyXwXRiLla8QehzWYjXxXfoy+Op4D0va+qq8hc7oLREcaqVy8qcKLncA82SS9vioGLPLx1vDDvNJKMpImCsDGaSZU/XesU0pO054AfVdCg7CsTMyIKqQCIkmQ=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <0B77E85B7094B14CB3CA41E06413ECF4@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 57334461-9bcb-48b9-9adb-08d726355d74
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Aug 2019 12:44:53.7290 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: acbzkuMpGGfcf/vZCcJbqmIS2HpTdknKoWaJLkv+jn1aYdJSCyQrhXlKldrH0sCmFNRt7tI3IQFsp4+ccXyfqQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4365
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.27, xch-rcd-017.cisco.com
X-Outbound-Node: rcdn-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/9prtIk9RrHzBlVDVchUYSXMNUD0>
Subject: Re: [Add] What to do in this potential working group
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Aug 2019 12:45:09 -0000

Let me chime for once in this heated discussion as an individual Internet user: Jari, you are 100% right (except perhaps the order of your list, I would have put the critical part on the top as companies can go bankrupt)

-éric

On 21/08/2019, 12:55, "Add on behalf of Jari Arkko" <add-bounces@ietf.org on behalf of jari.arkko@piuha.net> wrote:

    Ekr,
    
    I fully realise that there will be differences of viewpoints when it comes to the trustworthiness of individual DNS service providers.
    
    But I was trying to make a different point. While we may disagree which provider I’d like to use for the DNS service, I think it would be quite reasonable for us to agree that if all of us put our all our queries in one place (whatever that is) that this causes severe problems:
    
    - That place becomes immensely valuable from a commercial data mining perspective. There’s a risk that it will at least at some point be used for data mining, despite whatever the intentions of the people who set this system up now is.
    
    - That place becomes immensely interesting to for governments to tap. There’s a risk that this tapping is either already happening or will be happening going forward, despite best intentions of the people who set it up or who manage it.
    
    - That places becomes critical infrastructure and a weak point that we do not need in the Internet.
    
    As a result, I would like to suggest that the IETF actually concludes the above and recommends against this practice.
    
    For whatever it is worth, I can understand some motivations for doing something like this e.g. in browsers. Some good reasons and potentially also some not so good reasons. But even with that background, it is difficult for me to imagine a worse act for the Internet than making browsers call home for every action of the user. The privacy impacts for the users are unimaginably bad.
    
    A few years ago we realised that surveillance organisations were looking at people's traffic, and we managed to change the Internet to protect this traffic with cryptographic means. I think it is to think about the next step, and ensure that we don’t create an Internet architecture that puts everyone’s data at central location.
    
    Obviously, encrypted DNS is still hugely important, as are global DNS services. However, the deployment model of using one (or a small number of) providers is just wrong. That would be fixable.
    
    Jari
    
    -- 
    Add mailing list
    Add@ietf.org
    https://www.ietf.org/mailman/listinfo/add

v2.23.0 | Report a Bug | By Email