[Add] New draft: draft-pauly-add-resolver-discovery
Tommy Pauly <tpauly@apple.com> Wed, 20 May 2020 23:03 UTC
Return-Path: <tpauly@apple.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E5BDC3A0912 for <add@ietfa.amsl.com>; Wed, 20 May 2020 16:03:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M-FvyCR8Zb7a for <add@ietfa.amsl.com>; Wed, 20 May 2020 16:03:48 -0700 (PDT)
Received: from ma1-aaemail-dr-lapp02.apple.com (ma1-aaemail-dr-lapp02.apple.com [17.171.2.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F2CF3A091D for <add@ietf.org>; Wed, 20 May 2020 16:03:47 -0700 (PDT)
Received: from pps.filterd (ma1-aaemail-dr-lapp02.apple.com [127.0.0.1]) by ma1-aaemail-dr-lapp02.apple.com (8.16.0.42/8.16.0.42) with SMTP id 04KMs6jR001853 for <add@ietf.org>; Wed, 20 May 2020 16:03:46 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : content-type : mime-version : subject : message-id : date : to; s=20180706; bh=emg7aQlEVHhUJ+Ofa1deutF0eS/GUnyqJBDdt5hir+Y=; b=OlicbTVmvqzqdQ7882hBvmCtG6UNSTDKGbs2xN8HNdNsqhJegeVgazmm/staiHRSs8eo R1j4JiDW1q44jTfy7MZA7rUGOK6Ngb1PyeUtY+9oEYfJbDpxgnJITJ7iSwPd8xoUPI+W HkX4Rcg/lcWlsuJfRqijsE1ABio7vsWZvdeXVQCvHCUY4OPh3RMg6cmnAtiMdfQJjLOT dk9BXSlnn91Yr13aaUII53Cx5RXyQR1hxzsryr/kSZvaqA2oJ8PMaaiuHSO37+Z1+fh1 vbpQJxhUU7fEoaeBjjA1o4ysJhlxacyidS7RuKhwtexy4yTXXiY4u4djiM0nICxUcvSd ZQ==
Received: from rn-mailsvcp-mta-lapp02.rno.apple.com (rn-mailsvcp-mta-lapp02.rno.apple.com [10.225.203.150]) by ma1-aaemail-dr-lapp02.apple.com with ESMTP id 312cuttx48-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <add@ietf.org>; Wed, 20 May 2020 16:03:46 -0700
Received: from rn-mailsvcp-mmp-lapp01.rno.apple.com (rn-mailsvcp-mmp-lapp01.rno.apple.com [17.179.253.14]) by rn-mailsvcp-mta-lapp02.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) with ESMTPS id <0QAN00T0BK29FB20@rn-mailsvcp-mta-lapp02.rno.apple.com> for add@ietf.org; Wed, 20 May 2020 16:03:45 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp01.rno.apple.com by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) id <0QAN00800JC61300@rn-mailsvcp-mmp-lapp01.rno.apple.com> for add@ietf.org; Wed, 20 May 2020 16:03:45 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 5daaeb935bbe0e8d25090cf6b04f92b4
X-Va-E-CD: 6adbf5d47afd2c61f6e3c94a3f8e52ac
X-Va-R-CD: c014f4c77ddf7cf0554435f897123d8f
X-Va-CD: 0
X-Va-ID: 46080845-3b9b-4f93-8c1e-f20443964afa
X-V-A:
X-V-T-CD: 5daaeb935bbe0e8d25090cf6b04f92b4
X-V-E-CD: 6adbf5d47afd2c61f6e3c94a3f8e52ac
X-V-R-CD: c014f4c77ddf7cf0554435f897123d8f
X-V-CD: 0
X-V-ID: 27475de7-d016-428c-ae48-a2df6b9018e5
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.216, 18.0.676 definitions=2020-05-20_17:2020-05-20, 2020-05-20 signatures=0
Received: from [17.232.191.18] (unknown [17.232.191.18]) by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.5.20200312 64bit (built Mar 12 2020)) with ESMTPSA id <0QAN004B7K28KW00@rn-mailsvcp-mmp-lapp01.rno.apple.com> for add@ietf.org; Wed, 20 May 2020 16:03:45 -0700 (PDT)
From: Tommy Pauly <tpauly@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_3FF6EC67-D2CC-4EF3-B935-2FC80E337517"
MIME-version: 1.0 (Mac OS X Mail 13.4 \(3608.80.7.2.3\))
Message-id: <BC307608-2AC0-4A4A-804C-C9C59DA7EE1D@apple.com>
Date: Wed, 20 May 2020 16:03:44 -0700
To: ADD Mailing list <add@ietf.org>
X-Mailer: Apple Mail (2.3608.80.7.2.3)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.216, 18.0.676 definitions=2020-05-20_17:2020-05-20, 2020-05-20 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/iPRr4GPbo3EpcF5-hY9blYEIlP4>
Subject: [Add] New draft: draft-pauly-add-resolver-discovery
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 May 2020 23:03:57 -0000
Hello ADD, We’ve just posted a draft of Adaptive DNS Privacy [1] that’s scoped down to talk about resolver discovery and designation mechanisms, both on local networks and over the wider Internet. This draft is targeted at the focus of the ADD group. https://tools.ietf.org/html/draft-pauly-add-resolver-discovery-00 <https://tools.ietf.org/html/draft-pauly-add-resolver-discovery-00> This covers: - What it means to designate an encrypted resolver - How to discover resolvers using SVCB/HTTPSSVC records - How to validate designation either by validating DNSSEC on these records, or by performing validation with an HTTPS server - How to advertise a resolver on the local network - How to discover a “companion” DoH server to a directly known resolver Thanks to Tommy Jensen for his additional input on some of the local/direct resolver bootstrapping. We’ll be publishing other documents that update the behavior for client algorithms and the use of Oblivious DoH, but we wanted to present this portion individually as the group discusses how best to discover resolvers, etc. Best, Tommy [1] Previous, broader version, here: https://tools.ietf.org/html/draft-pauly-dprive-adaptive-dns-privacy-01
- [Add] New draft: draft-pauly-add-resolver-discove… Tommy Pauly
- Re: [Add] New draft: draft-pauly-add-resolver-dis… Ben Schwartz
- Re: [Add] [EXTERNAL] Re: New draft: draft-pauly-a… Tommy Jensen
- Re: [Add] New draft: draft-pauly-add-resolver-dis… Chris Box (BT)