Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-core-dns-over-coap
Ben Schwartz <bemasc@meta.com> Wed, 05 July 2023 18:40 UTC
Return-Path: <prvs=055012030e=bemasc@meta.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B099C15107B; Wed, 5 Jul 2023 11:40:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.793
X-Spam-Level:
X-Spam-Status: No, score=-2.793 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=meta.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QQJjLeDMPJGT; Wed, 5 Jul 2023 11:40:45 -0700 (PDT)
Received: from mx0b-00082601.pphosted.com (mx0b-00082601.pphosted.com [67.231.153.30]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 147E0C15106E; Wed, 5 Jul 2023 11:40:44 -0700 (PDT)
Received: from pps.filterd (m0109331.ppops.net [127.0.0.1]) by mx0a-00082601.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 365HeI7i012143; Wed, 5 Jul 2023 11:40:23 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=meta.com; h=from : to : cc : subject : date : message-id : content-type : mime-version; s=s2048-2021-q4; bh=NTODLdWDpwPyxIatCX+UEw8uRGxt4X0sXvxgCH6fdIY=; b=b5azG1TS+ydml5EB1WbyDYsTyiCHYe9u0zlVQagiprdNiPFw4615WVwX2Z3S9Vc2paYI hCvm4MywNaVJxnN81vpoB3HvlxVAeg9iQUlPeACo5ZkTBVaBnBQC48AZnSW+kMv/Htos 8dGDJ/Nj47bumhfCDH3yeNhPbFUsE9cqvYmiflGc3Hsno29G34slAgkrhYujnoc1M10H zUHFJQYeOHbVPtmq0GnRtrfNq9Lhvb9qozytNcNVBg0t6PXga/FwEOQ4N/nps/ctOteJ TqA2lRKtlafR71ugS7ZcgKA+WGLvhcBirHcZdyDolTnrBMBvQyVdGQ2203OBhr8WjT9V zw==
Received: from nam12-dm6-obe.outbound.protection.outlook.com (mail-dm6nam12lp2173.outbound.protection.outlook.com [104.47.59.173]) by mx0a-00082601.pphosted.com (PPS) with ESMTPS id 3rmyv5p4b6-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 05 Jul 2023 11:40:23 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TgDrGDtfuuL8QvQ9zv6IuW5thgi8+s+lT8NPFj5DB2AvfK5nTmoOi4qUGIMMnroS1GB2PDK7FHMOQMiFw05nEx455fwLBb85SVD91e+rmpEEEPCizVZrYxYWxMEOIkNd560N3SBkuH6FVoZtkybjJQt5FMhbW9BLlWjL3EqY8q1qrnNMzZaty3Av+c8CyWu46r7QfyqT5vTDB64sRKREAjNppn8gfTPqtRJrDbIs/bPb24bjG2rYwS666wbDb8gw+Wu9w/L50jPiQRU5ZFLH7FmiP81umCqx3bRNVbHHFFfGuYVhXGZOPWAxyt+PjRW02VzZBfYczJ6Rc8Y19Bh9Og==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=NTODLdWDpwPyxIatCX+UEw8uRGxt4X0sXvxgCH6fdIY=; b=aPjkQQqC8vXSpk0Z61fxKoDxEQQVNkgpK4IbiVUn8wpMAzsJ8GDBHUXEQnFQoxMLQDAOTxk4lMuLiGVWjIV/anI3SLgUEe4nCpDFq/NgwEGvLgulriU26ws5BTy61V0z7OpMrcBVIAYoKVJLnK8fwZLW89Bs2Gmzwv9e8GiXB/Qx6nuQmVTJdKdIn78wyXM3hSHbA1X79JrkFz/3ESDvEGVE3aqgksaUM+sDnvK8umL3edr95klRltv/z8+/nIfQJhQpQtVjqZ8LTn+D1U2rmwxxfvy5CuwDk/MwAZONF/z6+HRisXYUjPSxIdPFiiZvGZYo2I5yeqPlnJt/5jcpOA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=meta.com; dmarc=pass action=none header.from=meta.com; dkim=pass header.d=meta.com; arc=none
Received: from BN8PR15MB3281.namprd15.prod.outlook.com (2603:10b6:408:aa::24) by MW5PR15MB5244.namprd15.prod.outlook.com (2603:10b6:303:194::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6565.17; Wed, 5 Jul 2023 18:40:21 +0000
Received: from BN8PR15MB3281.namprd15.prod.outlook.com ([fe80::a390:786:8b85:2158]) by BN8PR15MB3281.namprd15.prod.outlook.com ([fe80::a390:786:8b85:2158%6]) with mapi id 15.20.6565.016; Wed, 5 Jul 2023 18:40:21 +0000
From: Ben Schwartz <bemasc@meta.com>
To: Christian Amsüss <christian@amsuess.com>
CC: Martine Sophie Lenders <m.lenders@fu-berlin.de>, "core@ietf.org" <core@ietf.org>, "draft-ietf-core-dns-over-coap@ietf.org" <draft-ietf-core-dns-over-coap@ietf.org>, dnsop <dnsop@ietf.org>, DNS Privacy Working Group <dns-privacy@ietf.org>
Thread-Topic: [DNSOP] Next steps: draft-ietf-core-dns-over-coap
Thread-Index: AQHZr2/3WEwoNcwWzEuAIfkXQiWp8w==
Date: Wed, 05 Jul 2023 18:40:20 +0000
Message-ID: <BN8PR15MB32814FED7FC7E459A484967FB32FA@BN8PR15MB3281.namprd15.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: BN8PR15MB3281:EE_|MW5PR15MB5244:EE_
x-ms-office365-filtering-correlation-id: c5bdc823-3d41-4ef5-e05f-08db7d87497d
x-fb-source: Internal
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN8PR15MB3281.namprd15.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(366004)(396003)(376002)(346002)(39860400002)(136003)(451199021)(122000001)(966005)(6506007)(64756008)(53546011)(38070700005)(71200400001)(478600001)(7696005)(83380400001)(186003)(9686003)(5660300002)(2906002)(52536014)(41300700001)(76116006)(4326008)(54906003)(91956017)(66476007)(66556008)(8936002)(8676002)(6916009)(66946007)(316002)(66446008)(33656002)(86362001)(55016003)(166002)(38100700002)(19627405001)(66899021); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_BN8PR15MB32814FED7FC7E459A484967FB32FABN8PR15MB3281namp_"
X-OriginatorOrg: meta.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN8PR15MB3281.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c5bdc823-3d41-4ef5-e05f-08db7d87497d
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Jul 2023 18:40:20.9611 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 8ae927fe-1255-47a7-a2af-5f3a069daaa2
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: t+TVKOtD0InqYMgqN5hhS15bviyoeAWHKltVEP3qD+Q86NEEg61JWnaXFyBvMdkw
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW5PR15MB5244
X-Proofpoint-ORIG-GUID: WHjlgp15fCCOKbc3kUNoLBZGsbsBnuz4
X-Proofpoint-GUID: WHjlgp15fCCOKbc3kUNoLBZGsbsBnuz4
X-Proofpoint-UnRewURL: 0 URL was un-rewritten
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.254,Aquarius:18.0.957,Hydra:6.0.591,FMLib:17.11.176.26 definitions=2023-07-05_09,2023-07-05_01,2023-05-22_02
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/0t-yn-CpwY1gqbkv52lOF1LI4C8>
Subject: Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-core-dns-over-coap
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jul 2023 18:40:49 -0000
I think firmware size is a perfectly reasonable and sufficient motivation for this draft, but I don't think it can be described as "performance". --Ben Schwartz ________________________________ From: Christian Amsüss Sent: Wednesday, July 5, 2023 12:17 PM To: Ben Schwartz Cc: Martine Sophie Lenders; core@ietf.org; draft-ietf-core-dns-over-coap@ietf.org; dnsop; DNS Privacy Working Group Subject: Re: [DNSOP] Next steps: draft-ietf-core-dns-over-coap Hello Ben, picking one of the points in the thread and leaving the rest to another subthread: > > We have a paper on the performance benefits just accepted for CoNEXT, > > which we will cite once it is published. An early pre-print (the final > > paper underwent some major revisions though) is available on arXiv [5]. > > This paper appears to be focused on DNS performance, but DNS is > usually only a small component of overall system performance. In this context, I think a relevant performance metric is firmware size (or, equivalently, network load from firmware updates) -- a metric that is covered in the latest preprint[1] of the same work. While a CoAP plus OSCORE stack is marginally larger in firmware that a DNS plus DTLS stack (and admittedly that's not even accounting for EDHOC that'd also be needed if the DNS server is authenticated with public key cryptography), that is text the application already pulls in, whereas the DTLS component of DNS over DTLS alone already weighs another 20KiB of firmware size. That represents a significant portion of the flash memory available on the relevant microcontrollers. Software complexity (both in terms of LoC and in terms of items on an SBOM) is a factor that improves in parallel to the binary size savings. BR Christian [1]: https://arxiv.org/abs/2207.07486v2 -- To use raw power is to make yourself infinitely vulnerable to greater powers. -- Bene Gesserit axiom
- [dns-privacy] Next steps: draft-ietf-core-dns-ove… Martine Sophie Lenders
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Ben Schwartz
- Re: [dns-privacy] [core] Next steps: draft-ietf-c… mohamed.boucadair
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Martine Sophie Lenders
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Ben Schwartz
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Christian Amsüss
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Ben Schwartz
- Re: [dns-privacy] [DNSOP] Next steps: draft-ietf-… Esko Dijk
- Re: [dns-privacy] [core] [DNSOP] Next steps: draf… Carsten Bormann