Re: [dane] Meeting in Hawaii?
Warren Kumari <warren@kumari.net> Fri, 03 October 2014 00:36 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 102ED1ACFB6 for <dane@ietfa.amsl.com>; Thu, 2 Oct 2014 17:36:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5iyKIUh9iOHz for <dane@ietfa.amsl.com>; Thu, 2 Oct 2014 17:36:21 -0700 (PDT)
Received: from mail-wg0-f42.google.com (mail-wg0-f42.google.com [74.125.82.42]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 32C9D1ACFB3 for <dane@ietf.org>; Thu, 2 Oct 2014 17:36:21 -0700 (PDT)
Received: by mail-wg0-f42.google.com with SMTP id z12so235006wgg.25 for <dane@ietf.org>; Thu, 02 Oct 2014 17:36:19 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=ZMc0Hfg8B7pifSa/SmR7WPxIBOctA+repxROexI8y9Y=; b=AMwwmmScN/564RzPvCvn7i0x9FOjLVcIz4GSaPSSpol22lBCmq8PLSBC+UKbge+D86 D/SjaFxo/F16sBCN6paFEqlI6+bb3LljXxxWem7Quyw1U61/tF/Ie15z+HHwUS4rX1t+ brNbrtv1aK3NrC57VhMzEfHRj2sCwhlgmEBHVSSTmIbUl2QYRzqA7lA1cuYeGJHy+uwm 2sm2pHmlFFKsQ4nZnj6J7u1hj9ZRLz/442xyjKCeGMJiQHN4dMRJDXuKixIeI00nLFyA /jX9cMpX65tVjdFpiYopEEA9cqRcQljHpgLuy5AKA2RViwsDBnylotbTla541kF/TyRd zpbg==
X-Gm-Message-State: ALoCoQn0Ea7gWgRLVVhmnTgdMrZ1r3oiB3zyUHjlAye13rRkDAGEgpwJOdrcLWTxi4EkkbRYdpXd
MIME-Version: 1.0
X-Received: by 10.180.210.231 with SMTP id mx7mr8140013wic.42.1412296579754; Thu, 02 Oct 2014 17:36:19 -0700 (PDT)
Received: by 10.194.119.233 with HTTP; Thu, 2 Oct 2014 17:36:19 -0700 (PDT)
In-Reply-To: <4C36FDC5-12D2-48C1-A3D5-7AA4090E98C8@isoc.org>
References: <CAHw9_iLV1uWX2Fg5H9dBaMr=DsrGmyB_BJteP-kBA0MnXCkJ2w@mail.gmail.com> <E36D8CE6-F5E8-4606-950D-430FEAEA3523@kirei.se> <4C36FDC5-12D2-48C1-A3D5-7AA4090E98C8@isoc.org>
Date: Thu, 02 Oct 2014 20:36:19 -0400
Message-ID: <CAHw9_i+iJnEkRv90tsA1LMLwFBNQ-mT9ruR=i=6qRBHxLMHCKQ@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Dan York <york@isoc.org>
Content-Type: multipart/alternative; boundary="001a11c25d32f44655050479eb20"
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/KUCyWUWEXVxmxnkssNTS3IrPh9E
Cc: "<dane@ietf.org>" <dane@ietf.org>
Subject: Re: [dane] Meeting in Hawaii?
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Oct 2014 00:36:24 -0000
On Wednesday, October 1, 2014, Dan York <york@isoc.org> wrote: > Warren, (and everyone else) > > On Sep 29, 2014, at 4:10 PM, Jakob Schlyter <jakob@kirei.se > <javascript:_e(%7B%7D,'cvml','jakob@kirei.se');>> wrote: > > On 27 sep 2014, at 02:52, Warren Kumari <warren@kumari.net > <javascript:_e(%7B%7D,'cvml','warren@kumari.net');>> wrote: > > Please let us know if you'd really like to meet, and open issues on > documents that need discussing. Also, if you have a doc, we'd like it > revised *soon*. > > > All the authors of the various drafts on DANE for email (S/MIME and > OpenPGP) will be there, and we will have discussions on the list > beforehand. Given this, I for one, hope we can meet and flesh out any > details left on this topic. > > > To Jakob's point, we're going to have a significant number of the > DANE-related authors and implementors all together at IETF and I think a > general topic of "What Else Do We Need To Do For DANE For Email" could be a > good discussion topic. > > While we have this great big "DANE brain trust" all in one location (and > also coming in remotely), I would be interested in having (and would be > willing to lead, if necessary) a discussion around "What Else Do We Need To > Do To Get DANE More Widely Deployed". Now that we are seeing actual > deployment and usage, are there things we have learned that can guide us in > accelerating the deployment of DANE? > > We've captured a good bit of implementation guidance in Viktor and Wes' > https://tools.ietf.org/html/draft-ietf-dane-ops-06 and so perhaps a > review of that document would help, but I'm also interested in questions > like: > > - what roadblocks are people running into with implementing DANE? > (outside of the broader issue of getting DNSSEC validation and signing > more widely available) > > - are there more "Using DANE with <foo>" types of documents that we can > or should create? (and who is willing to do so) > > - have we seen areas where more standardization would help? > > - are there some good examples/case studies of DANE implementations that > we could perhaps capture as informational RFCs? (the Jabber community's > implementation comes to mind) > > - are there places where it would be helpful if there were reference > implementations of DANE support? For example, DANE for email got a boost > when Viktor added it to postfix. Are there other commonly-used open source > projects where the addition of DANE support would help move deployment > along? (I'm NOT saying that the DANE WG would be involved with these > implementations... but brainstorming together and identifying a list could > help other people and groups (ex. Internet Society, Verisign Labs, NLNet > Labs) advocate and perhaps fund efforts to get that DANE support added.) > > - are there test tools that need to be developed? or existing ones that > need to be better promoted? are there interop tests we can arrange? > > I realize some of this may seem outside our charter, but if I look at > the charter, it includes these phrases: > ----- > The > DANE WG shall also produce a set of implementation guidance > for operators and tool developers. > > <big snip> > > The group may also create documents that describe how protocol > entities can discover and validate these bindings in the execution > of specific applications. This work would be done in coordination > with the IETF Working Groups responsible for the protocols. > > The group may in addition encourage interoperability testing and > document the results of such testing. > ----- > > So I do see a good bit of this covered under that. > > The end result I'd like to see out of this discussion would be: > > - guidance for the WG on what, if any, additional documents we need to > create (and identification of who might write them) > - potential interoperability testing > - guidance to WG members and other organizations on how we can get DANE > more widely deployed > > Obviously I have an interest in this because I'm employed by the > Internet Society in large part to do whatever possible to accelerate the > deployment of DNSSEC (and IPv6 and... ), but this really means that I'm > here for *you* all to help do what needs to be done. I'd definitely > appreciate a sense of the group about what we can all collectively do to > make DANE more widely used. Certainly we can have some of this discussion > on the list... but in a f2f meeting we can have a much more engaged > discussion. > > So if we have time on the agenda and you all feel it would be > appropriate, I'd like to have a discussion along these lines. > > I'm not sure we need 2 hours though - 1,5 hours should be enough. > > > I'm also not sure we need 2 hours... although this discussion I outlined > above could wind up occupying some time. > > Great -- we'll meet. I'll chat with Olafur re: 1.5h vs 2h. It is nice to see that there is this much interest / desire to meet -- a cynical reader might assume that this was all a nasty, but clever ploy to get folk to promise to rev docs, and come up with interesting topics... but we are not that inventive / evil :-P > Dan > -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [dane] Meeting in Hawaii? Warren Kumari
- Re: [dane] Meeting in Hawaii? Jakob Schlyter
- Re: [dane] Meeting in Hawaii? Peter Saint-Andre - &yet
- Re: [dane] Meeting in Hawaii? Dan York
- Re: [dane] Meeting in Hawaii? Viktor Dukhovni
- Re: [dane] Meeting in Hawaii? Warren Kumari
- Re: [dane] Meeting in Hawaii? Michael Richardson
- Re: [dane] Meeting in Hawaii? Viktor Dukhovni
- Re: [dane] Meeting in Hawaii? Jens Wagner
- Re: [dane] Meeting in Hawaii? Viktor Dukhovni
- Re: [dane] Meeting in Hawaii? Jens Wagner
- Re: [dane] Meeting in Hawaii? Viktor Dukhovni
- Re: [dane] Meeting in Hawaii? Carsten Strotmann
- Re: [dane] Meeting in Hawaii? James Cloos