Re: [dns-privacy] Root Server Operators Statement on DNS Encryption

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 31 March 2021 21:49 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3D523A385C for <dns-privacy@ietfa.amsl.com>; Wed, 31 Mar 2021 14:49:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.3
X-Spam-Level:
X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IROGcVPnCXJ3 for <dns-privacy@ietfa.amsl.com>; Wed, 31 Mar 2021 14:49:19 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DD17C3A385F for <dprive@ietf.org>; Wed, 31 Mar 2021 14:49:18 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 56169BE47; Wed, 31 Mar 2021 22:49:15 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n9CmC9K777Bg; Wed, 31 Mar 2021 22:49:13 +0100 (IST)
Received: from [10.244.2.119] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 7CC3BBE2F; Wed, 31 Mar 2021 22:49:13 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1617227353; bh=4frUMjFOjDyzu+9zJdylpn34MLoleKBxlFIVPcd4Lgk=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=ihF60IYXJDhBf9TswIFrOaCgWEQoawHGK/Nyr5+iSpOsyxOK0F8nrQc0QN4yk6n7h D/lrCZpPUuAeAF8LFWkqwGcoN8kd/6J5pu042bSUiO6k0b4hSJ5TpcE/eRFM2e5qER rSfvqVn/EFBepbVGhj3TVMxkIZlCHin4GTO6Wlpc=
To: Bill Woodcock <woody@pch.net>, Rob Sayre <sayrer@gmail.com>
Cc: "dprive@ietf.org" <dprive@ietf.org>
References: <c925da9089fa4b1e991ec74fc9c11e7f@verisign.com> <CAChr6Sxwao=FAcoeHMuOf0L=JCZ+wvhsr9BNZW_dbt+1=HWQwg@mail.gmail.com> <20210331091238.GA10597@nic.fr> <CAChr6SxPNVAZMYfZqF+K6Xf8FPGa9ZgHkL-uUvtKMEiJSPmp8Q@mail.gmail.com> <2607D274-936F-4A31-9E4D-EEBCF45BE838@pch.net> <CAChr6Szg+EbFqSpFPco8Gyb9pzNNnrSoQJcXTDVeg40_EXiPDg@mail.gmail.com> <4B1CCB51-C777-4434-B28E-76C22C12E4DA@pch.net> <CAChr6Sym=tm-vj-3FB-GbOG6U=U4CFsRE6yyWJk14waZQLbRiQ@mail.gmail.com> <ABD711DE-80CE-4B15-9153-82DA25E4F000@pch.net> <CAChr6Swfnc_s_-3TS6NuCzuqWduA-E6270x4uSLNGnTF+sLnmQ@mail.gmail.com> <981FF900-A7ED-46DF-9DDB-056E76822017@pch.net>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Message-ID: <13460b9e-a7d4-1bad-b48c-64941fb4739f@cs.tcd.ie>
Date: Wed, 31 Mar 2021 22:49:12 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.7.1
MIME-Version: 1.0
In-Reply-To: <981FF900-A7ED-46DF-9DDB-056E76822017@pch.net>
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="T8fqbgl6nY3p8hJ0QUQ2uTTAUaox7exsb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/QKWmK3hkBFVeK7DE5MDejRIrIRI>
Subject: Re: [dns-privacy] Root Server Operators Statement on DNS Encryption
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Mar 2021 21:49:24 -0000

Hiya,

On 31/03/2021 22:43, Bill Woodcock wrote:
> Then those RFCs should be worded carefully so that they don’t suggest
> that the thing they’re proposing is generally applicable.
> Particularly to the roots.  Which are actual critical
> infrastructure.
There was a load of mail earlier today on just that.

The real issue IMO is not querying the root servers but
the TLDs. There are still performance issues to consider
of course but the business model and the value to the
person somewhere behind the recursive are quite different.

I really wish we could stop all mixing up the roots with
the TLDs in this discussion.

Cheers,
S.