IETF Logo Mail Archive

Re: [Add] [Ext] Updated charter proposal for ADD

Rob Sayre <sayrer@gmail.com> Wed, 15 January 2020 19:24 UTC

Return-Path: <sayrer@gmail.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E2D9120915 for <add@ietfa.amsl.com>; Wed, 15 Jan 2020 11:24:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tdnIMwoPBMIR for <add@ietfa.amsl.com>; Wed, 15 Jan 2020 11:24:16 -0800 (PST)
Received: from mail-il1-x132.google.com (mail-il1-x132.google.com [IPv6:2607:f8b0:4864:20::132]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A28B12090B for <add@ietf.org>; Wed, 15 Jan 2020 11:24:16 -0800 (PST)
Received: by mail-il1-x132.google.com with SMTP id x5so15868194ila.6 for <add@ietf.org>; Wed, 15 Jan 2020 11:24:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=kAdmPqEycsXQKiQJhW6p9MK/u/g57OU7mkJGyrSy8Fw=; b=QD90lVYew/l1hohWYyxXU94VfilkuLJG4aUGWhd1r7BYz5pPrreL2IzYFa58R8sW8z c38sBypxwPEiSnANlWnWHdx/99LlqEjVbPnwzTXkteCFN7PC42y9zaWwxP5at8zU9WUw yv1N2MgDWSotb+yWqqIdou+zGdFG1HQjfpFWqNcIACCeQGafEsBPOcYyIIgJS/7DfjoG ExNEs9QXWRzdIuZwY2+PU+Jg0Dq5YOJfvJzVzloN+UVZh/K3z1vn7xcAoC7pOE3HZNGY iy481Zr/lHUojjVJcvQYvZqvCoSsWpdrZuNREWNu+x0jYzDIUY+kENfpiJVqK77PoqLZ oNvg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=kAdmPqEycsXQKiQJhW6p9MK/u/g57OU7mkJGyrSy8Fw=; b=sbfXEztMTsnsksEzdSbvf9dkCsPBq8H3+AgFISGzY8GVB6bqlaQy5cHafApEqKuIkX FRmNoz0DXFQm4lHT9Ow6ypjPu5idxX5uvH0Q2IlqzTYLa4PO8tBPEJnz5EIr3TNWWjKv OyGA2ECjiKAgKyi5jzx59LO7WGUoR0HLROCZoTdqBi+a5sr+Evb0EBgkzjTOKvtGfyXX SzKTHktU9O1d10aceZHFAs7EKvxfkp78gzY0HOfQnjn5L6T0yhC6/X3a8WddnRVp9/kY hUpvlgsuvN6bbDY637O4V/CkJPvU2NfildcWsXizZwoPHnJ4oTPLnQG4u5n2KHhNBqV/ 7Tsg==
X-Gm-Message-State: APjAAAVMrfyf5HhGl2vxEkIgnuDlXlgy5/nJ2bR6GRT678OdqGU41qIy VCxhtgUOVKClamqYeH7eghlo8evlVN6N9eY7jh8=
X-Google-Smtp-Source: APXvYqxxXSng/RF8AKaIz34R7gvTyC65CIleTMYOcPsu1GWkIhqsTSeIZnw9HQzObEO/Z3dsc9uNXS3ZvQREqmIHhzQ=
X-Received: by 2002:a92:5845:: with SMTP id m66mr45267ilb.257.1579116255787; Wed, 15 Jan 2020 11:24:15 -0800 (PST)
MIME-Version: 1.0
References: <236B0A34-8C7F-49D2-8075-5AF5AC35BDFB@apple.com> <AD6E599F-96E8-44FC-8A05-8BFD2F659129@icann.org> <66C24EE6-5C7B-4788-AE26-06B900915010@fugue.com>
In-Reply-To: <66C24EE6-5C7B-4788-AE26-06B900915010@fugue.com>
From: Rob Sayre <sayrer@gmail.com>
Date: Wed, 15 Jan 2020 11:24:02 -0800
Message-ID: <CAChr6SzcuomCFisPhLHYfQGzbR2=yYhtsGHV8+kd5gCdJn+ABA@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Paul Hoffman <paul.hoffman@icann.org>, ADD Mailing list <add@ietf.org>, Tommy Pauly <tpauly=40apple.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007c40d2059c32a737"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/YEchF8Ay8Snp6pC4VRF9VOMio_I>
Subject: Re: [Add] [Ext] Updated charter proposal for ADD
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jan 2020 19:24:20 -0000

On Wed, Jan 15, 2020 at 7:48 AM Ted Lemon <mellon@fugue.com> wrote:

> On Jan 15, 2020, at 10:13 AM, Paul Hoffman <paul.hoffman@icann.org> wrote:
>
> Any mechanisms that specify interactions between clients and
> servers must provide the security properties expected of IETF
> protocols, e.g., confidentiality protection, integrity protection,
> and authentication with strong work factor.
>
> Any mechanism whose understanding of the network and network services
> comes from interactions that were not cryptographically authenticated (such
> as DHCP and RA) cannot meet those requirements.
>
>
> Rather than just deleting this text, which I agree is probably not what we
> want, how about fixing it?
>

It might help to understand how people are planning to deploy DoH/DoT on
local networks. Right now, my DNS server is 192.168.86.1, and encrypted DNS
seems designed to bypass it.

thanks,
Rob

v2.23.0 | Report a Bug | By Email