Re: [dns-privacy] I-D Action: draft-ietf-dprive-dtls-and-tls-profiles-06.txt

Sara Dickinson <sara@sinodun.com> Fri, 28 October 2016 11:02 UTC

Return-Path: <sara@sinodun.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71995129A8F for <dns-privacy@ietfa.amsl.com>; Fri, 28 Oct 2016 04:02:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wAafvRzqv4WE for <dns-privacy@ietfa.amsl.com>; Fri, 28 Oct 2016 04:02:55 -0700 (PDT)
Received: from shcp01.hosting.zen.net.uk (shcp01.hosting.zen.net.uk [88.98.24.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B091129A98 for <dns-privacy@ietf.org>; Fri, 28 Oct 2016 04:02:54 -0700 (PDT)
Received: from [62.232.251.194] (port=19356 helo=virgo.sinodun.com) by shcp01.hosting.zen.net.uk with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.87) (envelope-from <sara@sinodun.com>) id 1c04vo-0004U2-3N for dns-privacy@ietf.org; Fri, 28 Oct 2016 12:02:50 +0100
From: Sara Dickinson <sara@sinodun.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 10.0 \(3226\))
Date: Fri, 28 Oct 2016 12:02:40 +0100
References: <147765246079.24863.10612950858387334757.idtracker@ietfa.amsl.com>
To: dns-privacy@ietf.org
In-Reply-To: <147765246079.24863.10612950858387334757.idtracker@ietfa.amsl.com>
Message-Id: <858E7101-91B8-4CD0-899F-AF17B2AEC123@sinodun.com>
X-Mailer: Apple Mail (2.3226)
X-OutGoing-Spam-Status: No, score=-2.9
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - shcp01.hosting.zen.net.uk
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - sinodun.com
X-Get-Message-Sender-Via: shcp01.hosting.zen.net.uk: authenticated_id: sara+sinodun.com/only user confirmed/virtual account not confirmed
X-Authenticated-Sender: shcp01.hosting.zen.net.uk: sara@sinodun.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/FKsltK2atFXyqcvt-tyoJ3JZDOw>
Subject: Re: [dns-privacy] I-D Action: draft-ietf-dprive-dtls-and-tls-profiles-06.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Oct 2016 11:02:56 -0000

Hi All, 

I wanted to break the current set of updates into two so I didn’t miss anything this time. 

This -06 version corrects the minor issues raised in the recent reviews along with adding improved text at the end of section 4.2 and introducing the term ‘Authentication domain name’:

 *  Introduction: Re-word discussion of Working group charter.
 *  Introduction: Re-word first and third bullet point about ‘obtaining'  a domain name and IP address.
 *  Introduction: Update reference to DNS-over-TLS draft.
 *  Terminology: Change forwarder/proxy to just forwarder
 *  Terminology: Add definition of 'Authentication domain name' and use this throughout
 *  Section 4.2: Remove parenthesis in the table.
 *  Section 4.2: Change the text after the table as agreed with Paul Hoffman.
 *  Section 4.3.1: Change title and remove brackets around last  statement.

The -07 version will be available shortly that will be re-structured to clarify Usage profiles vs authentication mechanisms and SPKI pinset scope/usage. 

Sara. 

 

> On 28 Oct 2016, at 12:01, internet-drafts@ietf.org wrote:
> 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the DNS PRIVate Exchange of the IETF.
> 
>        Title           : Authentication and (D)TLS Profile for DNS-over-(D)TLS
>        Authors         : Sara Dickinson
>                          Daniel Kahn Gillmor
>                          Tirumaleswar Reddy
> 	Filename        : draft-ietf-dprive-dtls-and-tls-profiles-06.txt
> 	Pages           : 22
> 	Date            : 2016-10-28
> 
> Abstract:
>   This document describes how a DNS client can use a domain name to
>   authenticate a DNS server that uses Transport Layer Security (TLS)
>   and Datagram TLS (DTLS).  Additionally, it defines (D)TLS profiles
>   for DNS clients and servers implementing DNS-over-TLS and DNS-over-
>   DTLS.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dprive-dtls-and-tls-profiles/
> 
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-ietf-dprive-dtls-and-tls-profiles-06
> 
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dprive-dtls-and-tls-profiles-06
> 
> 
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> _______________________________________________
> dns-privacy mailing list
> dns-privacy@ietf.org
> https://www.ietf.org/mailman/listinfo/dns-privacy