IETF Logo Mail Archive

[dns-privacy] FW: New Version Notification for draft-wing-dprive-dnsodtls-00.txt

"Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com> Tue, 21 April 2015 07:51 UTC

Return-Path: <tireddy@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D08471B36FA for <dns-privacy@ietfa.amsl.com>; Tue, 21 Apr 2015 00:51:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.511
X-Spam-Level:
X-Spam-Status: No, score=-14.511 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a9gVvCOm_V4o for <dns-privacy@ietfa.amsl.com>; Tue, 21 Apr 2015 00:51:27 -0700 (PDT)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C68EC1B36F7 for <dns-privacy@ietf.org>; Tue, 21 Apr 2015 00:51:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2956; q=dns/txt; s=iport; t=1429602676; x=1430812276; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=/ZgifNkgPVClE+HJGCPMK4lozOpkabbeZ4AkucrPdj0=; b=VeuPBL4e409qW68AHlXS9bdC2C+FpmfSmhq48YVwDrjhv77SU54qsLmt MXN/MN0G8BVYUVJ2Dh89MATG2nhKZ9o3Co0o0XF54JyRZuuJllWin1Pl3 KJCD/LyE2I1ANQT9Fg2JzBEt+UeiRjVkkFzbr4eavTqk03OxJtU0drLsy E=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CXBAD1ADZV/5BdJa1bgwxSXAWDE8IWZgmBT4YEAhyBIzgUAQEBAQEBAX2EIAEBAQQjEUMOBAIBCBEEAQEDAgYdAwICAjAUAQYBAQUDAgQTCAGIIg21HJRrAQEBAQEBAQEBAQEBAQEBAQEBAQEBF4EhihaEORo4BoJiL4EWBZEwhAGHRjqDApBMIoIegVVvAYFDgQABAQE
X-IronPort-AV: E=Sophos;i="5.11,614,1422921600"; d="scan'208";a="143066727"
Received: from rcdn-core-8.cisco.com ([173.37.93.144]) by alln-iport-6.cisco.com with ESMTP; 21 Apr 2015 07:51:16 +0000
Received: from xhc-aln-x11.cisco.com (xhc-aln-x11.cisco.com [173.36.12.85]) by rcdn-core-8.cisco.com (8.14.5/8.14.5) with ESMTP id t3L7pFnH029010 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <dns-privacy@ietf.org>; Tue, 21 Apr 2015 07:51:16 GMT
Received: from xmb-rcd-x10.cisco.com ([169.254.15.220]) by xhc-aln-x11.cisco.com ([173.36.12.85]) with mapi id 14.03.0195.001; Tue, 21 Apr 2015 02:51:15 -0500
From: "Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: New Version Notification for draft-wing-dprive-dnsodtls-00.txt
Thread-Index: AQHQfAbLAKTEJnWkI0mxvyAmNCrut51XF0pw
Date: Tue, 21 Apr 2015 07:51:15 +0000
Message-ID: <913383AAA69FF945B8F946018B75898A41211DB0@xmb-rcd-x10.cisco.com>
References: <20150421074257.29046.92189.idtracker@ietfa.amsl.com>
In-Reply-To: <20150421074257.29046.92189.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.65.44.9]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/dns-privacy/0XZ3axUvJVUXZ1r00tGgRtkvlM4>
Subject: [dns-privacy] FW: New Version Notification for draft-wing-dprive-dnsodtls-00.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Apr 2015 07:51:29 -0000

This document proposes the use of Datagram Transport Layer Security (DTLS) for DNS, to protect against passive listeners and certain active attacks. Comments and suggestions are welcome.

-Tiru

-----Original Message-----
From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] 
Sent: Tuesday, April 21, 2015 1:13 PM
To: Prashanth Patil (praspati); Tirumaleswar Reddy (tireddy); Tirumaleswar Reddy (tireddy); Dan Wing (dwing); Dan Wing (dwing); Prashanth Patil (praspati)
Subject: New Version Notification for draft-wing-dprive-dnsodtls-00.txt


A new version of I-D, draft-wing-dprive-dnsodtls-00.txt has been successfully submitted by Tirumaleswar Reddy and posted to the IETF repository.

Name:		draft-wing-dprive-dnsodtls
Revision:	00
Title:		DNS over DTLS (DNSoD)
Document date:	2015-04-21
Group:		Individual Submission
Pages:		11
URL:            http://www.ietf.org/internet-drafts/draft-wing-dprive-dnsodtls-00.txt
Status:         https://datatracker.ietf.org/doc/draft-wing-dprive-dnsodtls/
Htmlized:       http://tools.ietf.org/html/draft-wing-dprive-dnsodtls-00


Abstract:
   DNS queries and responses are visible to network elements on the path
   between the DNS client and its server.  These queries and responses
   can contain privacy-sensitive information which is valuable to
   protect.  An active attacker can send bogus responses causing
   misdirection of the subsequent connection.

   To counter passive listening and active attacks, this document
   proposes the use of Datagram Transport Layer Security (DTLS) for DNS,
   to protect against passive listeners and certain active attacks.  As
   DNS needs to remain fast, this proposal also discusses mechanisms to
   reduce DTLS round trips and reduce DTLS handshake size.  The proposed
   mechanism runs over the default DNS port and can also run over an
   alternate port.

                                                                                  


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

v2.23.0 | Report a Bug | By Email