IETF Logo Mail Archive

Re: [dns-privacy] Direction of draft-mayrhofer-edns0-padding

"Christian Huitema" <huitema@huitema.net> Wed, 05 August 2015 22:33 UTC

Return-Path: <huitema@huitema.net>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A0C81ACE0A for <dns-privacy@ietfa.amsl.com>; Wed, 5 Aug 2015 15:33:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.8
X-Spam-Level:
X-Spam-Status: No, score=0.8 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NTF4EZiMxFwV for <dns-privacy@ietfa.amsl.com>; Wed, 5 Aug 2015 15:33:39 -0700 (PDT)
Received: from xsmtp01.mail2web.com (xsmtp01.mail2web.com [168.144.250.230]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A5F851ACE27 for <dns-privacy@ietf.org>; Wed, 5 Aug 2015 15:33:39 -0700 (PDT)
Received: from [10.5.2.17] (helo=xmail07.myhosting.com) by xsmtp01.mail2web.com with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from <huitema@huitema.net>) id 1ZN7Fe-0005ad-IR for dns-privacy@ietf.org; Wed, 05 Aug 2015 18:33:38 -0400
Received: (qmail 15666 invoked from network); 5 Aug 2015 22:33:33 -0000
Received: from unknown (HELO huitema1) (Authenticated-user:_huitema@huitema.net@[131.107.192.226]) (envelope-sender <huitema@huitema.net>) by xmail07.myhosting.com (qmail-ldap-1.03) with ESMTPA for <dns-privacy@ietf.org>; 5 Aug 2015 22:33:33 -0000
From: Christian Huitema <huitema@huitema.net>
To: 'Sara Dickinson' <sara@sinodun.com>, dns-privacy@ietf.org
References: <19F54F2956911544A32543B8A9BDE075468A9354@NICS-EXCH2.sbg.nic.at> <4B26F2B2-AA67-492B-9855-30F8ABF38AF9@vpnc.org> <877fpjgcfo.fsf@alice.fifthhorseman.net> <C1BD472D-318A-49D6-A30C-AF7C788B8CCF@vpnc.org> <55B911FD.8000407@cs.tcd.ie> <42B98315-47C1-4560-A192-F575729E1F25@vpnc.org> <55B91616.9050502@cs.tcd.ie> <CEC37867-D160-475E-AF32-B1C0B089964F@sinodun.com>
In-Reply-To: <CEC37867-D160-475E-AF32-B1C0B089964F@sinodun.com>
Date: Wed, 05 Aug 2015 15:33:35 -0700
Message-ID: <027401d0cfce$c4f02730$4ed07590$@huitema.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AQGxrgjbut5YX8L+k/Bdig9KIWPPGAJoq6TiAQF9GskCKcoAsQMMi4YyAqwodF0BZ6BpKQJT0ldnncP/PxA=
Content-Language: en-us
Archived-At: <http://mailarchive.ietf.org/arch/msg/dns-privacy/8g6obHXTKevszA22WKFIDfWWta0>
Subject: Re: [dns-privacy] Direction of draft-mayrhofer-edns0-padding
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Aug 2015 22:33:41 -0000

On Wednesday, August 5, 2015 9:51 AM, Sara Dickinson wrote:
> > On 29 Jul 2015, at 13:28, Alexander Mayrhofer
> <alexander.mayrhofer@nic.at> wrote:
> >
> > Hi,
> >
> > I'm working through my notes from the DPRIVE session regarding the EDNS0
> Padding option. My takeaway was as follows:
> >
> > - Generally, this seems to be a reasonable idea
> 
> I support this draft and would like to see it move forward.

I too support this draft. I said in the WG that we may be better served with TLS-level padding, but I was convinced by two arguments. First, TLS level padding will be available at best with TLS 1.3, so we may have to wait some time. And then, there is the general argument that when the application can do padding, this is more efficient than a generic TLS solution. So, yes, that draft is useful.

-- Christian Huitema

v2.23.0 | Report a Bug | By Email