Re: [dns-privacy] I-D Action: draft-ietf-dprive-dtls-and-tls-profiles-07.txt

Sara Dickinson <sara@sinodun.com> Fri, 28 October 2016 15:57 UTC

Return-Path: <sara@sinodun.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 47E27129552 for <dns-privacy@ietfa.amsl.com>; Fri, 28 Oct 2016 08:57:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZBqnG_xTFfTa for <dns-privacy@ietfa.amsl.com>; Fri, 28 Oct 2016 08:57:43 -0700 (PDT)
Received: from shcp01.hosting.zen.net.uk (shcp01.hosting.zen.net.uk [88.98.24.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E66CE129496 for <dns-privacy@ietf.org>; Fri, 28 Oct 2016 08:57:42 -0700 (PDT)
Received: from [62.232.251.194] (port=31842 helo=virgo.sinodun.com) by shcp01.hosting.zen.net.uk with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.87) (envelope-from <sara@sinodun.com>) id 1c09XA-0000ky-4a for dns-privacy@ietf.org; Fri, 28 Oct 2016 16:57:39 +0100
From: Sara Dickinson <sara@sinodun.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 10.0 \(3226\))
Date: Fri, 28 Oct 2016 16:57:33 +0100
References: <147767004617.24983.928162681929398936.idtracker@ietfa.amsl.com>
To: dns-privacy@ietf.org
In-Reply-To: <147767004617.24983.928162681929398936.idtracker@ietfa.amsl.com>
Message-Id: <323F2D80-5006-4734-BA9D-87B76BDE9FBF@sinodun.com>
X-Mailer: Apple Mail (2.3226)
X-OutGoing-Spam-Status: No, score=-2.9
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - shcp01.hosting.zen.net.uk
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - sinodun.com
X-Get-Message-Sender-Via: shcp01.hosting.zen.net.uk: authenticated_id: sara+sinodun.com/only user confirmed/virtual account not confirmed
X-Authenticated-Sender: shcp01.hosting.zen.net.uk: sara@sinodun.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/DTzfHpKYsOxSsk3fOCC6t_tm6Ks>
Subject: Re: [dns-privacy] I-D Action: draft-ietf-dprive-dtls-and-tls-profiles-07.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Oct 2016 15:57:45 -0000

Hi All, 

This version includes the following changes motivated by the discussion on SPKI pinsets

- Re-work of the Abstract and Introduction to better describe the contents in this version
- Terminology: New definition of “authentication information"
- Scope: Changes to the Scope section
- Moved discussion of combining authentication mechanism earlier
- Changes to the section headings and groupings to make the presentation more logical

This was mostly moving things around but there is some new text, particularly in the Introduction and it does slightly change the flow of the document. Paul - I haven’t moved the ‘source of domain names’ earlier as I think it is in better context where it is in this version but please let me know what you think.

I hope this improves the overall readability but another round of reviews would be most welcome. 

It doesn’t contain any changes to the description of Opportunistic Security which is still under discussion on the list.

Sara.  


> On 28 Oct 2016, at 16:54, internet-drafts@ietf.org wrote:
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the DNS PRIVate Exchange of the IETF.
> 
>        Title           : Authentication and (D)TLS Profile for DNS-over-(D)TLS
>        Authors         : Sara Dickinson
>                          Daniel Kahn Gillmor
>                          Tirumaleswar Reddy
> 	Filename        : draft-ietf-dprive-dtls-and-tls-profiles-07.txt
> 	Pages           : 23
> 	Date            : 2016-10-28
> 
> Abstract:
>   This document discusses Usage Profiles, based on one or more
>   authentication mechanisms, which can be used for DNS over Transport
>   Layer Security (TLS) or Datagram TLS (DTLS).  This document also
>   specifies new authentication mechanisms - it describes several ways a
>   DNS client can use an authentication domain name to authenticate a
>   DNS server.  Additionally, it defines (D)TLS profiles for DNS clients
>   and servers implementing DNS-over-(D)TLS.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dprive-dtls-and-tls-profiles/
> 
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-ietf-dprive-dtls-and-tls-profiles-07
> 
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dprive-dtls-and-tls-profiles-07
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________
> dns-privacy mailing list
> dns-privacy@ietf.org
> https://www.ietf.org/mailman/listinfo/dns-privacy