IETF Logo Mail Archive

Re: [dns-privacy] Call for Adoption: draft-hal-adot-operational-considerations

"Henderson, Karl" <khenderson@verisign.com> Tue, 20 August 2019 13:39 UTC

Return-Path: <khenderson@verisign.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B731120033 for <dns-privacy@ietfa.amsl.com>; Tue, 20 Aug 2019 06:39:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Yn4f5GPkq0lO for <dns-privacy@ietfa.amsl.com>; Tue, 20 Aug 2019 06:38:59 -0700 (PDT)
Received: from mail4.verisign.com (mail4.verisign.com [69.58.187.30]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3513212022D for <dns-privacy@ietf.org>; Tue, 20 Aug 2019 06:38:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=6405; q=dns/txt; s=VRSN; t=1566308339; h=from:to:subject:date:message-id:mime-version; bh=ecn5W6EKzne0yzxdUx27cMMZ1h8q9VLLi1/S3aK4DO4=; b=CdfKi233dH3rk+amI7cJ/GPcdbpZcup+FiqvRLK/EWCb3Qe2XJ1+JA/u QGeY5ykTEDuQWVYaofUsA0Ie0UMy99dDC9t9U1E3EREIaziXagI1/MFIq 0Pdh/sW2tjc4xpJavgZIV+xhFw6jfE2AxeU8jXDpHuJULq3qEOiHx5WXm nSAV/RFGi/YpxvhR1oMGcSAOfyA+lV3jMSWoIjbP4jE/Ze1uSaJUin7yl gTHlyo3bIa0teyCtb9S+dJ2XS6l0KOAy+evitbguyYc+dvKx85tlLj2Jr fzUKmGSyQGftVBzjuvTHCf6YSvW6XdmTcQpgqWJCZPxRqYXFxE9NFKeVO A==;
X-IronPort-AV: E=Sophos;i="5.64,408,1559534400"; d="scan'208,217";a="8253676"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2G2BQAG91td/zCZrQpmHgEGBwaBZ4EWU4EcgTiEFY5hhiqXJAkBAQEBAQEBAQEHARMcAQGEWIJhOBMCBQEBAQQBAQEBAQYDAQEBAoYcgjoignAGHQZoAQhCAgQwJwQBgzQBgR2sG4EyikSBNIwBgUE+gTgfgkw+h08ygiYEjxOFD5czAwYCgh2UVJhGjVuYDgIEAgQFAhWBZ4F6cHoBgkKRBo8ZgSEBAQ
Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1713.5; Tue, 20 Aug 2019 09:38:54 -0400
Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde]) by BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde%4]) with mapi id 15.01.1713.004; Tue, 20 Aug 2019 09:38:54 -0400
From: "Henderson, Karl" <khenderson@verisign.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>, "bemasc@google.com" <bemasc@google.com>, "hmco@env.dtu.dk" <hmco@env.dtu.dk>
Thread-Topic: [dns-privacy] Call for Adoption: draft-hal-adot-operational-considerations
Thread-Index: AQHVV1ybxB+rxlRoREmnLJlN+7zGwg==
Date: Tue, 20 Aug 2019 13:38:54 +0000
Message-ID: <6CD20313-147F-40A9-91D2-16F2E19A4B48@verisign.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.c.190715
x-originating-ip: [10.170.148.18]
Content-Type: multipart/alternative; boundary="_000_6CD20313147F40A991D216F2E19A4B48verisigncom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/EJLGRm66aB7yYMSyU7LRGSGPBns>
Subject: Re: [dns-privacy] Call for Adoption: draft-hal-adot-operational-considerations
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Aug 2019 13:39:01 -0000

Hi Ben and Hugo,

I wanted to follow up and see if my response to Paul satisfies your concerns regarding ADoT being a new unspecified protocol?

To be clear, we argue that ADoT is NOT a new protocol. ADoT is simply DoT with a prepended A to disambiguate the path taken.

Regards,
Karl

>Hi Paul,
>
>To further clarify, we are not suggesting a change to the DoT protocol and are making liberal use of the final sentence in the Abstract of RFC7858 and echoed in the Introduction of RFC8310: "It does not prevent future applications of the protocol to recursive-to-authoritative traffic."
>
>Regards,
>Karl

v2.23.0 | Report a Bug | By Email