[Add] Joint ADD-DPRIVE-DNSOPS January 27, 2022 Interim
"Deen, Glenn" <Glenn_Deen@comcast.com> Mon, 10 January 2022 19:43 UTC
Return-Path: <Glenn_Deen@comcast.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D0DD3A0F06 for <add@ietfa.amsl.com>; Mon, 10 Jan 2022 11:43:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dRlQAmfRI59a for <add@ietfa.amsl.com>; Mon, 10 Jan 2022 11:43:04 -0800 (PST)
Received: from mx0a-00143702.pphosted.com (mx0a-00143702.pphosted.com [148.163.145.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4C1213A0FD7 for <add@ietf.org>; Mon, 10 Jan 2022 11:43:04 -0800 (PST)
Received: from pps.filterd (m0156893.ppops.net [127.0.0.1]) by mx0a-00143702.pphosted.com (8.16.1.2/8.16.1.2) with ESMTP id 20AJ3aKP005246 for <add@ietf.org>; Mon, 10 Jan 2022 14:43:03 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : content-type : mime-version; s=20190412; bh=xkkiM9KSCGIv5AVbJ3aMmmcYakrDsQe+oeS5oiUHRLA=; b=zOrWB/MEu5/3BNlPO+Kj0Ym+TIIBXKek9d0bj1BVcgnRIC9RI9+OTh+In1HKvrwTIKeZ emv/zJDMh5G9OQ9l8HOlXx1+ZFZw90EJ0sFWuG+dtI/fC6ZcY8ixHK+0SNj9NQpXjYVQ iRYK/M2GBZCF+3+ypzrCJPmwMd6df5UszQUJJuRbVtOLy7BCljcZi+LszkgqjOtT/NXu uqXus6758K6zMXRlkA6rtYziYah4w7r/DNw0BSZpYwIJtVCHxiCXP40UiegOFWEiizGS RG+e4xdzgbIBaNFemtFfQUt7217trf6fVYOYrzE8n84j8+bRsg1YgYgfNM5Sm7cXWJLX iQ==
Received: from pacdcexop05.cable.comcast.com (dlppfpt-wc-1p.slb.comcast.com [96.99.226.136]) by mx0a-00143702.pphosted.com (PPS) with ESMTPS id 3dgppja6pa-14 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <add@ietf.org>; Mon, 10 Jan 2022 14:43:03 -0500
Received: from PACDCEXOP01.cable.comcast.com (24.40.1.148) by PACDCEXOP05.cable.comcast.com (24.40.1.152) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Mon, 10 Jan 2022 14:42:19 -0500
Received: from pacdcexedge02.cable.comcast.com (68.87.38.198) by PACDCEXOP01.cable.comcast.com (24.40.1.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14 via Frontend Transport; Mon, 10 Jan 2022 14:42:19 -0500
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (104.47.55.177) by webmail.comcast.com (68.87.38.198) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Mon, 10 Jan 2022 14:42:06 -0500
Received: from BYAPR11MB3111.namprd11.prod.outlook.com (2603:10b6:a03:90::25) by SJ0PR11MB4911.namprd11.prod.outlook.com (2603:10b6:a03:2ad::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4867.7; Mon, 10 Jan 2022 19:42:04 +0000
Received: from BYAPR11MB3111.namprd11.prod.outlook.com ([fe80::dbb:6b76:b6b8:4066]) by BYAPR11MB3111.namprd11.prod.outlook.com ([fe80::dbb:6b76:b6b8:4066%6]) with mapi id 15.20.4867.012; Mon, 10 Jan 2022 19:42:04 +0000
From: "Deen, Glenn" <Glenn_Deen@comcast.com>
To: "add@ietf.org" <add@ietf.org>
Thread-Topic: Joint ADD-DPRIVE-DNSOPS January 27, 2022 Interim
Thread-Index: AQHYBlokaHcSRVKhCE6UaheclyWFiQ==
Date: Mon, 10 Jan 2022 19:42:04 +0000
Message-ID: <6CEB84DB-3B45-485A-BF0C-71C463580A34@comcast.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.55.21111400
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 158898fe-7587-4bbc-4943-08d9d4714762
x-ms-traffictypediagnostic: SJ0PR11MB4911:EE_
x-microsoft-antispam-prvs: <SJ0PR11MB49114FEFF34A1DCDB8C15459EA509@SJ0PR11MB4911.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: zmHsljXt8G9HRcUrBeNdRT2n3IERngFgps2YnRMXPx+qY0f4T57J1ftLb0rDcA7kGOi+oYyXODQ+IN/83qeZ0vU1DsMVOBmzRgB4uhExDJw8J0VoDhqQKytThwC+sKd5YKxYQqUOukivwa0XJxGVmzgUaxU1nAxDWU6Nlvh4ozx2Pj7AU3NW4H5OjNpQPUxLw0xvk7m/RMo+xQEIyCWofMq+oAsbJSdzxZeHzzU9e/OkhtcC+DOOJPHZVdA9R4ORA5Y/IBFYSwN4swtdOfrlT0ILvAcF0AhzWorpztGj3Dy2BjMTLVcViMl+2saJ8nM/PJifxPCJjx4QM9y4r5gOYa2aTe8XpWzHm0jZMPji3zELQjC7NxKrGWVGowBcXXYUrKyS5NqbUxVCkBz9IevPlc3A0yq5e9Jzl4YGWWx7h7jr/Dc+dQUVyJzsC26r/yyTPUxPOzhV1y3EFyU2G3pRhvg7AxUKuBqiCoHDyaNpu46n/cU0ut7x47I9X350QCSJ+ypypx80P3cxzuC1dT3trPYtpl1pqdEwDwtZtUMOIw95JeNYqbK41GwLxN1BZGsGoGdQM1IbtsTotD1WOk48sz/jGdhyh7ygSvnSvbcsZT9ioGAB8iG5SluGiecF5I2LTRhyBWukshjaQn86YMZp9WdutDKUJ064hBZ9yroCLfAQ/t6yODEWQguPw3QKabLJkB+j8Ql2Hmg5Big0b7SgspXZO7ie8cC8KlYmcSOTq6MKV+t3KywqbQWhAm+8tW3Npgdy5Viw6WR5gUNFqRQgOV/L4NNn4z7CgAgogzLAYAZSwnGJGAj5aFZqNZ0DQPU/
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB3111.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(38100700002)(66446008)(64756008)(66476007)(66946007)(66556008)(8676002)(6506007)(5660300002)(86362001)(38070700005)(6916009)(316002)(186003)(6486002)(83380400001)(166002)(76116006)(2906002)(966005)(508600001)(8936002)(36756003)(82960400001)(71200400001)(2616005)(33656002)(6512007)(122000001)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kK/I1QnbdS67ZQfTQZmSwVdmteVt6Yb2AWFYnl4mb4hsIEjyBaM/ClOgBGYgvGQuSJmhebBbo4HQB/PIKm+K6W3tCA6Y6+1M05bKv5GLF2xJURbTa0dsb6Vie8ftmAdBiSrwxkmje03v1MVmj/yx04y75R+T7RmpCQSftOKuJM0hC89vu+VQjKdMoj7wuv4zbJ1e4oIjVNrj3l0ZEKemI/CSCcn/yJ1JGLvOFQtomN+uHieorm4kCf2H0PQXnu25rzr0DWd9Om+7KMYy2B8/ix4sTcY1IiNLAVDEtw97rTVKVLUjOYMd0Blal3rVfqO4E8b1TQUXsmweumHb82sGcg==
arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=ljFmshMQOJqQmNE6D9RK5qITeDY/d0MbrgItVvUt24c=; b=MG8AzWvT7Uvaz2aeJ0WkMzDu1GtKCPq/smwtOfktz9xik/mIb7k5h4OwAxyV4E4lZAGDFwZhb9rKS+6zMFbguKP1/hLH8UiYmfwUL1prnkMHyaY5AN+ydJaV9tlvC3C0jcjkilYWl3ipYdO9lwXgVwaMgYtd65Wmd+nq+vZlVFY0y2qfL5JuacSyFtzyPGLs7w8G+4gRLatjpCBG+Uj5NgeLo3bIfHUIHcv4cX/LGodgBUYMiUpuRvze7ECPu4T6Wlkt93z6qIdj8u57r9ePMG7tSePCbbAQj3Rjr/GHjrLJ+5jbmpNuHXMEu80ESwlG9xbypS45KL7Tzz3xyCcaAA==
arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
x-ms-exchange-crosstenant-authas: Internal
x-ms-exchange-crosstenant-authsource: BYAPR11MB3111.namprd11.prod.outlook.com
x-ms-exchange-crosstenant-network-message-id: 158898fe-7587-4bbc-4943-08d9d4714762
x-ms-exchange-crosstenant-originalarrivaltime: 10 Jan 2022 19:42:04.2402 (UTC)
x-ms-exchange-crosstenant-fromentityheader: Hosted
x-ms-exchange-crosstenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
x-ms-exchange-crosstenant-mailboxtype: HOSTED
x-ms-exchange-crosstenant-userprincipalname: nhvlhK88yiog03j1UTN+rE9vg+hBb6E0Kq0xmJeYic6IQY7UzMsqqQsUQzi9r+En1XTMaXFiJ9tlywC/M/8pA0fChdxVg1O6joH9SfGC01s=
x-ms-exchange-transport-crosstenantheadersstamped: SJ0PR11MB4911
x-originatororg: comcast.com
Content-Type: multipart/alternative; boundary="_000_6CEB84DB3B45485ABF0C71C463580A34comcastcom_"
MIME-Version: 1.0
X-CFilter-Loop: Forward AAETWS
X-Proofpoint-ORIG-GUID: 9TsEG3e1VckjvOx_UZEIqnRAD2OVi41A
X-Proofpoint-GUID: 9TsEG3e1VckjvOx_UZEIqnRAD2OVi41A
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.790,Hydra:6.0.425,FMLib:17.11.62.513 definitions=2022-01-10_08,2022-01-10_02,2021-12-02_01
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/MP2HlsN5ug0YIgspNuUL6xBlQks>
Subject: [Add] Joint ADD-DPRIVE-DNSOPS January 27, 2022 Interim
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Jan 2022 19:43:09 -0000
Hi everyone, The chairs of ADD, DPRIVE, and DNSOPS have scheduled a joint interim on the topic of Split-DNS for January 27, 2022 from 1700-1830 UTC. This was originally announced on the ADD list back on Dec 20, but didn’t get a lot of attention like due to the holidays at the time (https://mailarchive.ietf.org/arch/msg/add/Jd3Tql9dLkYEBWrv5ifsMAU7M9g/) Background: --------------- This is a follow up to the discussion that has taken place in ADD around how to support discovery of encrypted DNS resolvers in Split-DNS environments. That extended discussion in ADD current stands at: (1) The ADD group showed that there was consensus that the problem of how to do discovery in Split-DNS environments was important for the group to work on; (2) The ADD group currently does not have consensus on how it should be done. (3) A number of discussion issues that are outside of the ADD Charter have been raised around requirements that can uniquely occur in split-DNS environments. It is the intent to use this joint session to discuss such issues, and others as needed to better understand the requirements that need to be satisfied for a ADD discovery mechanism for Split-DNS environments. Motivation: -------------- * Split-DNS is widely used in Enterprise and Intuitional network operations and in VPN environments. * Without a practical and acceptable standard on how to discover encrypted DNS resolvers it is likely that operators that make use of split-DNS will take it upon themselves to invent and deploy a wide variety of non-standardized discovery methods. This will hamper any future standards that may be developed, and will impact users negatively since they will not have a standard discovery mechanism to make use of. * The hope is that by discussing the security, privacy, and operational needs of discovery in Split-DNS environments that the ADD group can make progress toward documenting how to do it in a standard way Purpose of the Joint Interim: -------------------------------------- * To discuss the issues around discovery of encrypted DNS resolvers in a Split-DNS environment. What this Interim is NOT: ----------------------------------- * This is not intended as a referendum on the use of split-DNS. * This is not a workshop on how proposals of how to end the practice of Split-DNS or how to re-engineer networks that have it currently deployed. Agenda ----------- * Agenda and any Materials will be posted at: https://datatracker.ietf.org/meeting/interim-2022-add-01/session/add * The chairs of the 3 groups are working on the agenda for the Interim and plan on making it available well ahead of the 1-27-2022 Interim Meeting. Thanks, Glenn Deen on behalf of the ADD, DPrive, DNSOPS co-chairs