[dns-privacy] FW: New Version Notification for draft-reddy-dprive-dprive-privacy-policy-00.txt

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Sat, 05 October 2019 07:38 UTC

Return-Path: <tirumaleswarreddy_konda@mcafee.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 850271200C1 for <dns-privacy@ietfa.amsl.com>; Sat, 5 Oct 2019 00:38:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z-xRRL7JXWIR for <dns-privacy@ietfa.amsl.com>; Sat, 5 Oct 2019 00:38:47 -0700 (PDT)
Received: from us-smtp-delivery-140.mimecast.com (us-smtp-delivery-140.mimecast.com [216.205.24.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F7A2120058 for <dns-privacy@ietf.org>; Sat, 5 Oct 2019 00:38:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=mimecast20190606; t=1570261126; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=f+KbrAmURhliGmxhXxKoPrJi/Q2DSS7Uj1a4Nmd3hO8=; b=YTqSKlGHm+FfMsx6N29iq+sYk0ZIm7+gxUDphx785s9Dm4f5gHIFtHhp6Wj5rIpdGw3ce5 F8pD5p7+gFwbuHhATJGd5LoTTCu283kxA0ivVyHmGaVCLomBp0UbEus80ashf5TxmMja9V xTZvOeEsvgOqw6OSUb/I/8VLJGw45+Q=
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-cys01nam02lp2051.outbound.protection.outlook.com [104.47.37.51]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-121-OXRxReeNO-i2nIMx1qlshQ-1; Sat, 05 Oct 2019 03:38:44 -0400
Received: from DM5PR16MB1705.namprd16.prod.outlook.com (10.172.44.147) by DM5PR16MB1497.namprd16.prod.outlook.com (10.173.215.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2305.20; Sat, 5 Oct 2019 07:38:42 +0000
Received: from DM5PR16MB1705.namprd16.prod.outlook.com ([fe80::e820:4730:9c:32ad]) by DM5PR16MB1705.namprd16.prod.outlook.com ([fe80::e820:4730:9c:32ad%8]) with mapi id 15.20.2305.023; Sat, 5 Oct 2019 07:38:42 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: New Version Notification for draft-reddy-dprive-dprive-privacy-policy-00.txt
Thread-Index: AQHVee1L+8/DMGzSJEa1F9szX1L7x6dI8wMQ
Date: Sat, 5 Oct 2019 07:38:42 +0000
Message-ID: <DM5PR16MB1705F2D6A2F07916E0C7706EEA990@DM5PR16MB1705.namprd16.prod.outlook.com>
References: <157009854908.16293.4269133049514081713.idtracker@ietfa.amsl.com> <CAFpG3gdXe3MJjTSvjwcpbTCx6gBkr1ZN5sD1c9+93Uk2kOio0A@mail.gmail.com>
In-Reply-To: <CAFpG3gdXe3MJjTSvjwcpbTCx6gBkr1ZN5sD1c9+93Uk2kOio0A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.3.0.17
dlp-reaction: no-action
x-originating-ip: [49.37.202.168]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 6629f3fc-065b-475f-fae2-08d749670bee
x-ms-traffictypediagnostic: DM5PR16MB1497:
x-ms-exchange-purlcount: 5
x-microsoft-antispam-prvs: <DM5PR16MB14975FC3A11759F94A81D54BEA990@DM5PR16MB1497.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0181F4652A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(346002)(366004)(39860400002)(376002)(396003)(53754006)(189003)(199004)(22974007)(32952001)(66446008)(64756008)(5640700003)(66946007)(186003)(66556008)(76116006)(53546011)(26005)(86362001)(76176011)(6506007)(80792005)(6436002)(33656002)(66066001)(99286004)(102836004)(229853002)(486006)(66574012)(2420400007)(2351001)(2473003)(54896002)(6306002)(9686003)(55016002)(476003)(236005)(446003)(66476007)(11346002)(316002)(74316002)(14454004)(25786009)(7736002)(52536014)(8936002)(478600001)(966005)(2501003)(71190400001)(71200400001)(790700001)(2906002)(6116002)(7696005)(3846002)(8676002)(5660300002)(81166006)(7110500001)(15650500001)(256004)(606006)(14444005)(6916009)(81156014)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR16MB1497; H:DM5PR16MB1705.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: /fcSyrTsrAmKahMJIBtC/swDk2GtzDyMyddM/jTpQRr2wnsA0ekx5Ins2R6iU52LblmmhaIfT0WTmgtFKjDrcW05SG6ebWMQNNilI7Bva0qcbxogOcfQlDa/HrwIyBJ69oJ4IV9Q8p70QjWvFCY3+msXB32KHRa5JRH473mNIhoY+yQDNHocbDSJSQ93b1yDmk0QFdHHtXlUiAWaFY4eIx5dzhAo68XpeY9kGj0mjIBsmWTwOnH4QiaEjUfJR6VFbo9fREwjZwTWhIHJyKJoD0tr1/wxHZdGeF6OjbTzGLEmzjs/KOhKVKQvHkihVa5qWyn1ipdGMam+hQ7dTgkEcmaYe4q1taXaAJ5UDyEzZtl05ynNI41xXM0CidZimLp4c3u/EIGTqTwPbC/y77BIApLMdk679ZAszgFSkBh3cbdIQYcHPGtaBPflfeeMthQrOp6j9AMYa7j3X8anlaswcg==
x-ms-exchange-transport-forked: True
MIME-Version: 1.0
X-OriginatorOrg: mcafee.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 6629f3fc-065b-475f-fae2-08d749670bee
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Oct 2019 07:38:42.5430 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ZbH6yySCOvqN9sZVxU3SkyTYIIPlk5mvQY4OlCKnmbuMn+1mEDnG9XXeh8hJ0O7SQyYOKaNtLTNOLsYVOqukV0ujROuUNVQFnEZppNj5m4uWT6q7zFQoa7utMIUTGc6r
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR16MB1497
X-MC-Unique: OXRxReeNO-i2nIMx1qlshQ-1
X-Mimecast-Spam-Score: 0
Content-Type: multipart/alternative; boundary="_000_DM5PR16MB1705F2D6A2F07916E0C7706EEA990DM5PR16MB1705namp_"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/F0fEIRKpFSnEz9Mo7vuXI2UFKaY>
Subject: [dns-privacy] FW: New Version Notification for draft-reddy-dprive-dprive-privacy-policy-00.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 05 Oct 2019 07:38:50 -0000

Hi all,

We have published https://tools.ietf.org/html/draft-reddy-dprive-dprive-privacy-policy-00  that discusses a mechanism for the DNS server to communicate its cryptographically signed privacy policy information to a DNS client. By evaluating the DNS privacy policy and the signatory, the DNS client can choose to select or avoid a DoT/DoH server if it doesn't comply with the client's privacy expectations.

Comments, suggestions and questions are more than welcome.

Cheers,
-Tiru
---------- Forwarded message ---------
From: <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>>
Date: Thu, 3 Oct 2019 at 15:59
Subject: New Version Notification for draft-reddy-dprive-dprive-privacy-policy-00.txt
To: Tirumaleswar Reddy <kondtir@gmail.com<mailto:kondtir@gmail.com>>, Dan Wing <dwing-ietf@fuggles.com<mailto:dwing-ietf@fuggles.com>>, Michael C. Richardson <mcr+ietf@sandelman.ca<mailto:mcr%2Bietf@sandelman.ca>>



A new version of I-D, draft-reddy-dprive-dprive-privacy-policy-00.txt
has been successfully submitted by Tirumaleswar Reddy and posted to the
IETF repository.

Name:           draft-reddy-dprive-dprive-privacy-policy
Revision:       00
Title:          DNS server privacy policy with assertion token
Document date:  2019-10-03
Group:          Individual Submission
Pages:          24
URL:            https://www.ietf.org/internet-drafts/draft-reddy-dprive-dprive-privacy-policy-00.txt
Status:         https://datatracker.ietf.org/doc/draft-reddy-dprive-dprive-privacy-policy/
Htmlized:       https://tools.ietf.org/html/draft-reddy-dprive-dprive-privacy-policy-00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-reddy-dprive-dprive-privacy-policy


Abstract:
   Users want to control how their DNS queries are handled by DNS
   servers so they can configure their system to use DNS servers that
   comply with their privacy expectations.

   This document defines a mechanism for a DNS server to communicate its
   privacy policy to a DNS client.  This communication is
   cryptographically signed to attest to its authenticity.  By
   evaluating the DNS privacy policy and the signatory, the DNS client
   can choose a DNS server that best supports its desired privacy
   policies.  The privacy assertion token is particularly useful for
   DNS-over-TLS and DNS-over-HTTPS servers, both public resolvers and
   those discovered on the local network.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>.

The IETF Secretariat