IETF Logo Mail Archive

Re: [dns-privacy] Murray Kucherawy's No Objection ondraft-ietf-dprive-dnsoquic-10: (with COMMENT)

Jørgen Hovland ☁️ <jorgen@ssc.net> Tue, 22 March 2022 13:00 UTC

Return-Path: <jorgen@ssc.net>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9C8D73A12E5; Tue, 22 Mar 2022 06:00:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.795
X-Spam-Level:
X-Spam-Status: No, score=-0.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, MIME_HTML_ONLY=0.1, RCVD_DOUBLE_IP_LOOSE=1.012, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yeOdbPx9QUri; Tue, 22 Mar 2022 06:00:54 -0700 (PDT)
Received: from app1.mail.jcloud.no (app1.mail.jcloud.no [213.179.41.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2598A3A1316; Tue, 22 Mar 2022 06:00:49 -0700 (PDT)
Received: from 91.90.43.94 by 213.179.47.3 via JMail with sender <jorgen@ssc.net> and account ID 1; 22 Mar 2022 13:00:43 +0000 (UTC)
To: Sara Dickinson <sara@sinodun.com>, Murray Kucherawy <superuser@gmail.com>
Cc: dns-privacy@ietf.org, dprive-chairs@ietf.org, The IESG <iesg@ietf.org>, brian@innovationslab.net, draft-ietf-dprive-dnsoquic@ietf.org
From: Jørgen Hovland ☁️ <jorgen@ssc.net>
MIME-Version: 1.0
Message-ID: <6239c87bab17f26c0fc16403ce1af90.jorgen@ssc.net>
Date: Tue, 22 Mar 2022 13:00:43 +0000
Content-type: text/html; charset="utf-8"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/QdAMCckCvRvZOWDIdJLSzbjoLlM>
X-Mailman-Approved-At: Tue, 22 Mar 2022 13:36:12 -0700
Subject: Re: [dns-privacy] Murray Kucherawy's No Objection ondraft-ietf-dprive-dnsoquic-10: (with COMMENT)
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Mar 2022 13:08:25 -0000

> Clients SHOULD monitor the idle time incurred on their connection to
> the server, defined by the time spent since the last packet from the
> server has been received. When a client prepares to send a new DNS
> query to the server, it will check whether the idle time is
> sufficiently lower than the idle timer. If it is, the client will
> send the DNS query over the existing connection. If not, the client
> will establish a new connection and send the query over that
> connection.

Just my point of view, but this approach generally opens for permanent tracking for higher traffic clients or solutions that try to circumvent privacy by sending constant "ping" requests.
I would rather define "idle time" as the delta time between the first packet sent and current time. If the delta time is higher than XX seconds, a new connection will be performed regardless of when the last packet was sent.
An alternative for systems without proper knowledge of time is to define a maximum amount of requests per connection before it is reset (with or without regarding time).


Cheers,
Jørgen




At 09:40 22/03/2022 (UTC), Sara Dickinson wrote:



> On 10 Mar 2022, at 04:53, Murray Kucherawy via Datatracker <noreply@ietf.org> wrote:
>
> Murray Kucherawy has entered the following ballot position for
> draft-ietf-dprive-dnsoquic-10: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
> for more information about how to handle DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsoquic/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> Now THAT is a well done shepherd writeup.
>
> Thanks for this work, which was an interesting read. It's great to see this so
> quickly on the heels of QUIC itself.

Many thanks for the comments - please see the updates in version -11 which was just published, which we hope address your comments.

>
> Just a couple of BCP 14 things to point out. In Section 5.4, we have this:
>
> Clients SHOULD monitor the idle time incurred on their connection to
> the server, defined by the time spent since the last packet from the
> server has been received. When a client prepares to send a new DNS
> query to the server, it will check whether the idle time is
> sufficiently lower than the idle timer. If it is, the client will
> send the DNS query over the existing connection. If not, the client
> will establish a new connection and send the query over that
> connection.
>
> There's a blanket SHOULD, followed by two "will"s. I read those as normative
> requirements, even though they don't use BCP 14 language. But that means they
> conflict with the SHOULD. IMHO, this needs to be resolved.

Agreed - we’ve updated the following ‘wills' to SHOULDs.


>
> In Section 5.5:
>
> Clients SHOULD consider potential privacy issues associated with
> session resumption before deciding to use this mechanism. [...]
>
> I find "SHOULD consider" to be far too vague for this to be meaningful. If
> I've thought about it, have I met my burden here?

There are several things to evaluate here - we’ve updated this text to:
“Clients SHOULD consider
potential privacy issues associated with session resumption before deciding to use
this mechanism and specifically evaluate the trade-offs presented in the various sections of this document. The privacy issues are detailed…"

Does that address your concern or can you suggest text?

All nits fixed - thanks!

Sara.

>
> Thank you for including Section 7.
>
> And now, some nits.
>
> Abstract:
>
> * "... similar properties to that provided by ..." -- s/that/those/
>
> Section 1:
>
> * "DNS over QUIC is referred here as ..." -- s/referred/referenced/ or
> s/referred/referred to/
>
> Section 5.2:
>
> * The second-last paragraph is missing a closing parenthesis.
>
>
>

_______________________________________________
dns-privacy mailing list
dns-privacy@ietf.org
https://www.ietf.org/mailman/listinfo/dns-privacy

v2.23.0 | Report a Bug | By Email