Re: [dns-privacy] IESG review of draft-ietf-dprive-bcp-op
"Eric Vyncke (evyncke)" <evyncke@cisco.com> Wed, 24 June 2020 09:30 UTC
Return-Path: <evyncke@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB3543A0CE8; Wed, 24 Jun 2020 02:30:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.598
X-Spam-Level:
X-Spam-Status: No, score=-9.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=Vbwn7p3d; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=n3d5yJqj
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eogU_2kVeyf3; Wed, 24 Jun 2020 02:30:24 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE5903A0CE6; Wed, 24 Jun 2020 02:30:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3334; q=dns/txt; s=iport; t=1592991024; x=1594200624; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ymF/0sUv3J3CfstW8uzR2Tn1ZoOh8OrHy4Ti74AqyQs=; b=Vbwn7p3dRKFj4on77miasB0TN8Nj3QKkbwIsYL0+5MPWI9amEPtHFh1r AEcBjAFvEMCjWEiZb/20EW7mZIqAR8bXZouggW5TJwzgoEo0mqyBlNn4d UOeSKOKPESY5W5uiLFAy3XN7kAmm+nboERAH6euFVFdj6B+JIvxYuNl6L U=;
IronPort-PHdr: 9a23:tjqRkx1ALWKOkTnNsmDT+zVfbzU7u7jyIg8e44YmjLQLaKm44pD+JxWGtad2jVnOUZjdrflDjrmev6PhXDkG5pCM+DAHfYdXXhAIwcMRg0Q7AcGDBEG6SZyibyEzEMlYElMw+Xa9PBtOGcD5a0DU5Ha16G1aFhD2LwEgIOPzF8bbhNi20Obn/ZrVbk1IiTOxbKk0Ig+xqFDat9Idhs1pLaNixw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D3AACFHPNe/5FdJa1mDgwBAQEBAQEBAQEBAwEBAQESAQEBAQICAQEBAUCBSgKBUCMGKAeBRy8shCSDRgONGyWYV4JSA1ULAQEBDAEBLQIEAQGERwIXgX0CJDgTAgMBAQsBAQUBAQECAQYEbYVbDEIBEAGFHgEBAQEDEhERDAEBNwELBAIBCBEDAQIDAiYCAgIwFQgIAgQBDQUigwSCTAMuAawtAoE5iGF2gTKDAQEBBYUFGIIOCYEOKgGCZoV5hAMagUE/gREnDBCCTT6EPYMUM4ItiD+JcKI5CoJamS4DHYJxiSWFHo1NkTeBZJxnAgQCBAUCDgEBBYFqIoFWcBVlAYI+UBcCDY4egSUBCYJCihgFATh0NwIGAQcBAQMJfIQajAkBAQ
X-IronPort-AV: E=Sophos;i="5.75,274,1589241600"; d="scan'208";a="791754726"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 Jun 2020 09:30:21 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 05O9UL5k011915 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 24 Jun 2020 09:30:21 GMT
Received: from xhs-aln-003.cisco.com (173.37.135.120) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 24 Jun 2020 04:30:21 -0500
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 24 Jun 2020 04:30:20 -0500
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Wed, 24 Jun 2020 05:30:20 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LvEK5YDJ7lzsOi4Ubmm5L3xNwbe0eG7aeqaCGhWRBmXvZlFBJZkLGnnaq01D3u55bJT1HA/qOyK9dKo6HBsBVyl0Hp+3fVvGwMM5xefNFg68hfD5JV5hubjjj4IhW1+Mtpt+lCvTdWNDc2oAUWOtyTyBkdrU/iuwBRAStHH0KulYMYn+k7elhf9iyhO442BpbkNwOlExM77oR29n3J6Cw3PphJK1P4bu2LQSzFta/Ix1wg7oWiZjPl9p3bqt4TxZAax57eSM/UQLofGiUSWqqx2rS2jcIl7spCFipQ/+DCdD0WoncVYTt9GIZhFsvcFp86bVpoJaNLeJelnoPZocXw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ymF/0sUv3J3CfstW8uzR2Tn1ZoOh8OrHy4Ti74AqyQs=; b=MpAL4vhGFG2JCCmE7ODF5pD0IyOtwpMLuyKX6BSRaoCqDi6vBv1LJILWjse82TjZ52T5L/mimzHyKaivp4y9bm7lRMyuNwVnZRiyyXWaEQXaCarQAXLZNAk8+vyqCx22E5xKM7kR/s5GIr7WaReuqQ+1fbSwk0y7r1f2jtOBgwFaX0iVtabz14iLF9J5mhV8e+oV7OcUK58Dvj2RtUTnBeumlkQF7MKvSRM6BnvvUDZSqZxCfME4BkWVvmKnQcR0SZI5CJC8DKtqDFuTK3cD/hTUB08EO2IiaI1WtFh34HL81t6W26JwPPDR1uddsGS5+pjLoNGcPW/rxdJae/oAag==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ymF/0sUv3J3CfstW8uzR2Tn1ZoOh8OrHy4Ti74AqyQs=; b=n3d5yJqjcwg00ifcd756Rz1Fnd3dzawRHjjunioQ97CYq/iazgj1MWkEYISGHX4+0Mn3AhxjTJXav/zgwnUs6RdpzwRHHU6ytbQA42FDxPZ1etlHYrSPfaH+b5RsBSSvRTDNJiPehLdfglI4cNCV1mpbLDnHhIP+sTY78seBWps=
Received: from DM5PR11MB1753.namprd11.prod.outlook.com (2603:10b6:3:10d::13) by DM6PR11MB4459.namprd11.prod.outlook.com (2603:10b6:5:1de::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3109.24; Wed, 24 Jun 2020 09:30:19 +0000
Received: from DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::a14c:59b6:47b0:f630]) by DM5PR11MB1753.namprd11.prod.outlook.com ([fe80::a14c:59b6:47b0:f630%7]) with mapi id 15.20.3109.027; Wed, 24 Jun 2020 09:30:19 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Sara Dickinson <sara@sinodun.com>, IESG <iesg@ietf.org>, "dprive-chairs@ietf.org" <dprive-chairs@ietf.org>, DNS Privacy Working Group <dns-privacy@ietf.org>, Benjamin Kaduk <kaduk@mit.edu>, Alissa Cooper <alissa@cooperw.in>
CC: "draft-ietf-dprive-bcp-op@ietf.org" <draft-ietf-dprive-bcp-op@ietf.org>
Thread-Topic: IESG review of draft-ietf-dprive-bcp-op
Thread-Index: AQHWRYUOaFGpGD2msUiQ+2k8XTrr3qjnqqIA
Date: Wed, 24 Jun 2020 09:30:19 +0000
Message-ID: <32F376DA-E6CA-4932-A1D9-0DA193620B38@cisco.com>
References: <3994617A-D3C2-462F-B615-DF6E07466DB1@sinodun.com>
In-Reply-To: <3994617A-D3C2-462F-B615-DF6E07466DB1@sinodun.com>
Accept-Language: fr-BE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.38.20061401
authentication-results: sinodun.com; dkim=none (message not signed) header.d=none;sinodun.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2001:420:c0c1:36:483:2b44:93a4:74ad]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f7be6e56-12b5-4ca9-682f-08d818213629
x-ms-traffictypediagnostic: DM6PR11MB4459:
x-microsoft-antispam-prvs: <DM6PR11MB4459E37DE813726B6BA01103A9950@DM6PR11MB4459.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0444EB1997
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 1qNWADXzAqK0eVEWaciXaO9XMdcIHWTLmjR25lurG1SaUCKqoj6+ruhk1vH1y4OCZ5j8hVPTpIprsgKbVNviK8ZnVh9LdvdE7RoG6GS8nCucTV7aM5xvU2iRlqf0srl+XVL/jXxDPK6qwVpKqbK1u5ZJ6zZbFTpVO1yj+fmTneT4g3SNP1/bSMQo420zAA98nWaTh3d3cQ/9v33IxXCza0FVBslDVjbY6nl4xi5FGiaAfiwyyTeuynm8PbD/iY99+WrSmYhyNSiVvLP5zi6V/uS0D5ML9ngG86UypqriQU1s5fNrSxMRyPcCS/l5f6do
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM5PR11MB1753.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(396003)(39860400002)(136003)(346002)(366004)(376002)(6506007)(53546011)(186003)(6486002)(66946007)(33656002)(316002)(66446008)(64756008)(5660300002)(66556008)(76116006)(91956017)(2616005)(66476007)(36756003)(71200400001)(4326008)(8676002)(2906002)(6512007)(8936002)(478600001)(110136005)(83380400001)(86362001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <1EA89F29E08DA64893C627503027276A@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: f7be6e56-12b5-4ca9-682f-08d818213629
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jun 2020 09:30:19.4086 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fw/gJY0JqgPD3st5sv0kYwUX/Fk4RmazzFAjZefuyACFMjAFc6AbtJc2ZGzOSD0+h++pEvm7NUeDomftaKaATQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR11MB4459
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.14, xch-aln-004.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/DtuXwytfBjg2zBnWYiWTBBOCNlc>
Subject: Re: [dns-privacy] IESG review of draft-ietf-dprive-bcp-op
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jun 2020 09:30:26 -0000
Alissa and Ben, Is there any chance that you may quickly check whether the new version addresses your previous DISCUSS ? The plan is to put the document back on an IESG telechat Thank you -éric -----Original Message----- From: Sara Dickinson <sara@sinodun.com> Date: Thursday, 18 June 2020 at 17:28 To: IESG <iesg@ietf.org>, Eric Vyncke <evyncke@cisco.com>, "dprive-chairs@ietf.org" <dprive-chairs@ietf.org>, DNS Privacy Working Group <dns-privacy@ietf.org>, Benjamin Kaduk <kaduk@mit.edu>, Alissa Cooper <alissa@cooperw.in> Cc: "draft-ietf-dprive-bcp-op@ietf.org" <draft-ietf-dprive-bcp-op@ietf.org> Subject: IESG review of draft-ietf-dprive-bcp-op All, We’ve just published a -10 version of draft-ietf-dprive-bcp-op which we hope addresses the outstanding DISCUSS’s for this document (in addition to responses provided in the emails of March 4th) and the other comments from the IESG review. Ben/Alissa - since you both hold a DISCUSS on this document could you please re-read the emails and review the document to see if these changes/responses address your concerns? The main changes are: 1) In earlier versions of the BCP document there were references to some new sections that appeared only in draft-ietf-dprive-rfc7626-bis but that is no longer the case so this version of draft-ietf-dprive-bcp-op does the following: * converts the reference in Section 3 (Scope) from draft-ietf-dprive-rfc7626-bis to the original RFC7626 * converts the reference to RFC7626 to an Informative reference * removes the three direct reference to draft-ietf-dprive-rfc7626-bis in the text. They are very generic threats (passive surveillance, attacks on client resolver configuration and privacy of client IP addresses) and are all covered in RFC7626. 2) Clarify that the DROP statement outline is non-normative and add some further qualifications about content as requested. 3) Update the wording on data sharing to remove explicit discussion of consent in the Introduction and Section 5.3.3 4) Move table in section 5.2.3 to an appendix 5) Move section 6.2 to an appendix We are aware that the membership of the IESG has changed since the original review and so would like to request that the AD clarify what is now required in terms of further review to move this draft forward. Best regards Sara
- [dns-privacy] IESG review of draft-ietf-dprive-bc… Sara Dickinson
- Re: [dns-privacy] IESG review of draft-ietf-dpriv… Eric Vyncke (evyncke)