IETF Logo Mail Archive

Re: [dns-privacy] Start of WGLC for draft-ietf-dprive-dnsodtls.

"Paul Hoffman" <paul.hoffman@vpnc.org> Mon, 22 August 2016 01:11 UTC

Return-Path: <paul.hoffman@vpnc.org>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A65212D14A for <dns-privacy@ietfa.amsl.com>; Sun, 21 Aug 2016 18:11:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.8
X-Spam-Level:
X-Spam-Status: No, score=0.8 tagged_above=-999 required=5 tests=[BAYES_50=0.8] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NxEg4iUeKCOk for <dns-privacy@ietfa.amsl.com>; Sun, 21 Aug 2016 18:11:39 -0700 (PDT)
Received: from mail.proper.com (Opus1.Proper.COM [207.182.41.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A0CA212D104 for <dns-privacy@ietf.org>; Sun, 21 Aug 2016 18:11:39 -0700 (PDT)
Received: from [192.168.114.1] (50-1-98-193.dsl.dynamic.fusionbroadband.com [50.1.98.193]) (authenticated bits=0) by mail.proper.com (8.15.2/8.14.9) with ESMTPSA id u7M1Bbmp093393 (version=TLSv1 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <dns-privacy@ietf.org>; Sun, 21 Aug 2016 18:11:38 -0700 (MST) (envelope-from paul.hoffman@vpnc.org)
X-Authentication-Warning: mail.proper.com: Host 50-1-98-193.dsl.dynamic.fusionbroadband.com [50.1.98.193] claimed to be [192.168.114.1]
From: Paul Hoffman <paul.hoffman@vpnc.org>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Date: Sun, 21 Aug 2016 18:11:37 -0700
Message-ID: <63A7BA5A-24BC-40E9-8EC3-14CCF1D8608A@vpnc.org>
In-Reply-To: <CAHw9_iLWW-e_de9ieq_oe_eR=RBWg9swG7EiAPTp93825Vm=pw@mail.gmail.com>
References: <CAHw9_iLWW-e_de9ieq_oe_eR=RBWg9swG7EiAPTp93825Vm=pw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Mailer: MailMate (1.9.4r5234)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/SFlmSQ-qJeqZZI_sxb-g7WAhaZI>
Subject: Re: [dns-privacy] Start of WGLC for draft-ietf-dprive-dnsodtls.
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Aug 2016 01:11:40 -0000

Greetings. I have read the -10 draft, and think it is ready for moving 
to the IETF. The authors have done a good job of incorporating comments 
from the WG.

Because draft-ietf-dprive-dnsodtls might be abandoned in favor of RFC 
7858 after someone implements it and compares the two, it is appropriate 
that this is set to become an Experimental RFC. After testing, if 
implementers think that there is value to the DTLS version, it can be 
put on Standards Track. It will be interesting to see how that testing 
goes when it happens; I'm particularly interested in the tradeoff of 
"TCP state is kept in the kernel" vs. "session state is kept in the 
application stack" vs. DoS-by-CPU-exhaustion.

--Paul Hoffman

v2.37.1 | Report a Bug | By Email | System Status