IETF Logo Mail Archive

Re: [Add] Proposed charter and BoF request for IETF 106

Eric Rescorla <ekr@rtfm.com> Wed, 09 October 2019 17:05 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C7F21208E3 for <add@ietfa.amsl.com>; Wed, 9 Oct 2019 10:05:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RBLUOmYmenw3 for <add@ietfa.amsl.com>; Wed, 9 Oct 2019 10:05:41 -0700 (PDT)
Received: from mail-lf1-x131.google.com (mail-lf1-x131.google.com [IPv6:2a00:1450:4864:20::131]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CE9A51208E1 for <add@ietf.org>; Wed, 9 Oct 2019 10:05:40 -0700 (PDT)
Received: by mail-lf1-x131.google.com with SMTP id w6so2234008lfl.2 for <add@ietf.org>; Wed, 09 Oct 2019 10:05:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=plGZQMSeGhlM++an8Vz2kgUpcUY7qgiFfpg5QVtkSoA=; b=gKQdPpht1epMYPbUcpopkLvVVth5MqY+3QMGZXIKSM7yxJ3rJ1ts7M/onACAphdMdj OWL/R9L6i/jTnMTvH2Moaax/ygxGhO9IKMkiUcqasKDnODyaH2CmAffB3/zqA7pz1hzu UWMochklI9K960k8qJonLPjfN9Hjbm4fL/CVM6jVa6ZRCQuwMdURE5vWhtlnLG7X1WDl bq6J6+dgSJHUrb6DzgPRSzDQ92gH4+ziPqf9TbkZ2G+q150IjDlFav9aBYzmAYeY0HcX 7YdHyseyp8j1lTockgjzTHSoY+IZ0s8IKYLjBuK6w9t5tBMCqZcjLQz6c7x2zImYOK7z 9MYw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=plGZQMSeGhlM++an8Vz2kgUpcUY7qgiFfpg5QVtkSoA=; b=UNA/+tsZBrBiEk92Q5+uYjjRrMlrHfYL6Ze9b/ZGQvPawNubeOpvpw8K1svfc9sh1k i/SawRUDTZ5SIZOFwvJXTJKJM9Nnra1bpg9iDsn102cEv6DaMIMcSsHXcDjr+7gJhFeF DHS/pMqpvCBiMPtDm2ism1mRv6yeatonB5AJLyIwUS1+b07PwPpwasIe4m0fciuc6w4f jMvRvK2WwWLxqDhC0Go3qH9o2LmpszQ4O8kFRJs95vbriDALJtv8sba17P/2BmZ47Te1 l29bORDPHyivqNQ6fkbvCEIGICU5nAJrJRxERr0Kniny2xwIl1WDNk6mtAZyn7FfdvTT YFqg==
X-Gm-Message-State: APjAAAXijbDPXNEkIXMZwAh3oJnFbU1nKAWLo2od45W/HeBkPF8nw5Ex i9ZmqdVNmAV2fMAeFX0ItTKIB/tVEQ8dliUXatAWFFP8
X-Google-Smtp-Source: APXvYqzwqBPk3LDSnQCqz6UgrukRGZoBXfr5Eo+VeCH6OZHIFznV062vRNIihpkuM7Q+G585SZFgPsQoMlQe1rR7g4Y=
X-Received: by 2002:a19:7404:: with SMTP id v4mr2713251lfe.129.1570640738846; Wed, 09 Oct 2019 10:05:38 -0700 (PDT)
MIME-Version: 1.0
References: <CALaySJLxXVuHQNfTnaeKZ_R9xtBYWfbta+A1bWcE-ZQZwd3VZg@mail.gmail.com> <CABcZeBMkAFZW9mWjw92v+OR0Fa8ed+P80yc78eY07hCpsCNY6Q@mail.gmail.com> <1556423899.28427.1570640191209@appsuite-gw2.open-xchange.com>
In-Reply-To: <1556423899.28427.1570640191209@appsuite-gw2.open-xchange.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Wed, 09 Oct 2019 10:05:01 -0700
Message-ID: <CABcZeBNyRDqnVL68aXny=Ht69NjahmS4zRsnYizO53M--rhM5g@mail.gmail.com>
To: Vittorio Bertola <vittorio.bertola@open-xchange.com>
Cc: ADD Mailing list <add@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000004f237705947d4bb4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/fLNIGyMxBTghcGjGZANv78N9Crs>
Subject: Re: [Add] Proposed charter and BoF request for IETF 106
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Oct 2019 17:05:42 -0000

On Wed, Oct 9, 2019 at 9:56 AM Vittorio Bertola <
vittorio.bertola@open-xchange.com> wrote:

>
> Il 9 ottobre 2019 13:58 Eric Rescorla <ekr@rtfm.com> ha scritto:
>
> > Achieving these
> > objectives while providing confidentiality and tamper-resistance will
> > generally require that network operators shift to one of the available
> > encrypted transports for their resolvers and that clients include
> > configuration options to select them.
>
> This entirely misses the point, which isn't just to do a lot of encryption
> but to provide security for the user. Just having network operators
> transition to secure transports while continuing their current practices
> does not address the issue.
>
> Sorry, now it is my turn to dot the i's: certainly *some* network
> operators in your country adopt *some* current practices that Mozilla do
> not like, and neither do I. But you cannot generalize this like that, and
> then use it as a reason not to enable the other network operators to shift
> to encrypted transport while continuing their practices exactly like they
> are, for the full satisfaction of their existing users.
>
> And by the way, making judgements on whether the commercial practices of a
> given company are acceptable really looks like a policy issue.
>

You're misunderstanding me. I'm not saying that we should not enable
network operators to shift to encrypted transport. As I said in the section
of my message that you cut, I'm more than happy to have the IETF
standardize a mechanism for the network to tell endpoints that it supports
encrypted transport. I'm merely observing that this does not address the
issue that Mozilla is trying to address with our DoH/TRR deployment.

-Ekr


> --
>
> Vittorio Bertola | Head of Policy & Innovation, Open-Xchange
> vittorio.bertola@open-xchange.com
> Office @ Via Treviso 12, 10144 Torino, Italy
>
>

v2.23.0 | Report a Bug | By Email