IETF Logo Mail Archive

Re: [dns-privacy] Start of WGLC for draft-ietf-dprive-dnsodtls.

Bob Harold <rharolde@umich.edu> Wed, 17 August 2016 15:43 UTC

Return-Path: <rharolde@umich.edu>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E884512B026 for <dns-privacy@ietfa.amsl.com>; Wed, 17 Aug 2016 08:43:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umich.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cd7bIGslDT1G for <dns-privacy@ietfa.amsl.com>; Wed, 17 Aug 2016 08:43:21 -0700 (PDT)
Received: from mail-yw0-x22f.google.com (mail-yw0-x22f.google.com [IPv6:2607:f8b0:4002:c05::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0AE6812D5D2 for <dns-privacy@ietf.org>; Wed, 17 Aug 2016 08:43:14 -0700 (PDT)
Received: by mail-yw0-x22f.google.com with SMTP id r9so62385443ywg.0 for <dns-privacy@ietf.org>; Wed, 17 Aug 2016 08:43:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umich.edu; s=google-2016-06-03; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=B4xlUkG7w3Y8YuDoQz8/j1Yg1fh9OJ9RuOOu0Vky8AA=; b=Oyl2CA2T78ru14nVBa1UlXtvQExp0vBc+yuCHUCcJdveQon+LsvcrZ1wD2cFVXTnfo Eq6S6KY6hOTi4nhzr2hAoR9Z+L8NqwPW8qFfD+icC0vx4wPe3LOJKKiOHNyICIRHLj3B jdlO3UqFcf4KuYWaJFG/WAoY6X2zAA77YAxte++1cqvAefKRSb87Yo7KllQvx5dRa11b ggYGGjMkvzMcplTfLT5ITGwghdWqRFZTJAb4VgWTUKRtfbeTtEudTDJ5Myjg4aGKxvAf u4WcfD6vLnTnEixeWnCpDmmEVhsT7J1BJYcIUtGMhgBkmItkB2JxqIVsZrE1NYAD198c E5Zg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=B4xlUkG7w3Y8YuDoQz8/j1Yg1fh9OJ9RuOOu0Vky8AA=; b=gBSKfNqYSdmpZLAHrTzd4rim0xSU5/FCQRdAiY4qci6qKmnA5OL20/moJI/KcD9iaC WRQ/1rjNr5Q/CPDm6MQnC90sCRo57xPuCa44tpXXMeKZPKTMzCVyyD9Lq+GBd8OFirbC GvtzoAayC7KqsWHpMhOvaxJ3kyRBROl3BLAVyXmRcMrqIqPrqU0PLvgWdlTOmRpvPb+2 G3kdl2HKCyEAKzgwqgJq9Ra2yvp39GSnoh8TcOJ3fp9xet099FbzF0DlucU5b8mcel+Q dLi4+bcm2kzmjua1y20G+m8CJBio2V9peHc+PwkUiJpwA+F4gXYUEh5LVPNv5RJTaI25 Msug==
X-Gm-Message-State: AEkoouuNUcHyK1LWfvhm+bNuUguVL7U00vLmeKSS18I66r+QhXI5hF1wZSJsu9co0NzIO9EviGlWhXs5kpfNp3mW
X-Received: by 10.129.51.149 with SMTP id z143mr28423769ywz.74.1471448594014; Wed, 17 Aug 2016 08:43:14 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.13.255.3 with HTTP; Wed, 17 Aug 2016 08:43:13 -0700 (PDT)
In-Reply-To: <CAHw9_iLWW-e_de9ieq_oe_eR=RBWg9swG7EiAPTp93825Vm=pw@mail.gmail.com>
References: <CAHw9_iLWW-e_de9ieq_oe_eR=RBWg9swG7EiAPTp93825Vm=pw@mail.gmail.com>
From: Bob Harold <rharolde@umich.edu>
Date: Wed, 17 Aug 2016 11:43:13 -0400
Message-ID: <CA+nkc8AQHF1vD5V9rMd=WHHNERt8zKa5s+XKmNAbHWshXuzL-Q@mail.gmail.com>
To: Warren Kumari <warren@kumari.net>
Content-Type: multipart/alternative; boundary="001a114177f8c09435053a465224"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/NVBOiCZRye8YdYAqbPbFcSqt5dM>
Cc: "dns-privacy@ietf.org" <dns-privacy@ietf.org>, "DPRIVE-chairs@tools.ietf.org" <DPRIVE-chairs@tools.ietf.org>, draft-ietf-dprive-dnsodtls@ietf.org
Subject: Re: [dns-privacy] Start of WGLC for draft-ietf-dprive-dnsodtls.
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Aug 2016 15:43:24 -0000

On Tue, Aug 16, 2016 at 1:05 PM, Warren Kumari <warren@kumari.net> wrote:

> Dear DPRIVE WG,
>
> The authors of draft-ietf-dprive-dnsodtls have indicated that they
> believe that the document is ready, and have asked for Working Group
> Last Call.
>
> The draft is available here:
> https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsodtls/
>
> Please review this draft to see if you think it is ready for
> publication and send comments to the list, clearly stating your view.
>
> This WGLC ends Tue 30-Aug-2016.
>
> In addition, to satisfy RFC 6702 ("Promoting Compliance with
> Intellectual Property Rights (IPR)"):
> Are you personally aware of any IPR that applies to
> draft-ietf-dprive-dnsodtls?  If so, has this IPR been disclosed in
> compliance with IETF IPR rules? (See RFCs 3979, 4879, 3669, and 5378
> for more details.)
>
> Thanks,
> Warren Kumari
> <https://www.ietf.org/mailman/listinfo/dns-privacy>


Looks good to me.  A couple grammatical concerns:

Section "3.1.  Session Initiation"
The last sentance might sound better by adding "therefore" in the middle:

"There are
   significant security issues in mixing protected and unprotected data,
            therefore
   UDP connections on a port designated by a given server for DNS-over-
   DTLS are reserved purely for encrypted communications."

Section "4. Performance Considerations"
This sentence does not read well to me:

"TLS False Start [I-D.ietf-tls-falsestart] which reduces round-trips
   by allowing the TLS second flight of messages (ChangeCipherSpec) to
   also contain the (encrypted) DNS query. "

-- 
Bob Harold

v2.23.0 | Report a Bug | By Email