Re: [dns-privacy] New Version Notification for draft-dickinson-dprive-bcp-op-00.txt
Amelia Andersdotter <amelia@article19.org> Wed, 18 July 2018 17:19 UTC
Return-Path: <amelia@article19.org>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0672F1311FF for <dns-privacy@ietfa.amsl.com>; Wed, 18 Jul 2018 10:19:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MUxB10hZ1KTN for <dns-privacy@ietfa.amsl.com>; Wed, 18 Jul 2018 10:19:18 -0700 (PDT)
Received: from smarthost1.greenhost.nl (smarthost1.greenhost.nl [195.190.28.92]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9EF21311F8 for <dns-privacy@ietf.org>; Wed, 18 Jul 2018 10:19:17 -0700 (PDT)
Received: from smtp.greenhost.nl ([213.108.110.112]) by smarthost1.greenhost.nl with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.84_2) (envelope-from <amelia@article19.org>) id 1ffq6d-00043Z-3U for dns-privacy@ietf.org; Wed, 18 Jul 2018 19:19:15 +0200
To: dns-privacy@ietf.org
References: <153055267381.16329.4426903227293791899.idtracker@ietfa.amsl.com> <E149DE2F-222A-4CE8-914A-D1ACB7FF5280@sinodun.com> <45C74465-32B3-4461-AB2B-53305B6E47DF@sinodun.com>
From: Amelia Andersdotter <amelia@article19.org>
Openpgp: preference=signencrypt
Autocrypt: addr=amelia@article19.org; prefer-encrypt=mutual; keydata= xsFNBFjWlnsBEAC+jUN+LJE+mmxEL8lHSrvg47xSBMb9GdtH1Jr8tRSxXiO6R5E+FydsfqkL sjO0dI3x/VnNBi/kgPFFWiAzDEwGTiR/C9b/Muo+xrY+it6e49N56LTPGezrY2dy5yo6VcLl 7UwGz3fIWiNIj7dvuoPMBoO1uacF073E+dqDM5CmNh6o+OrHW8zhUlC9hKgXCq+8XpZJw90H un1zsHF0sRDiurjfYaCcbdAGK9+th9378ed1ZvLVo5uBVQXdydl3eJkNCOELq7VOS7oxSliA uX5/nj9A4LjeeYXgNbwGfKrMjlffP0FcAcgfzg9seqDd1DEk9EVaUMTr32fbWOQHjinXSC7r Lw4xaNfoBebIe1M6z16Xg7+bXXCTdmJYcL9ugmkvT6tGnR12Pfoca1oBwXPvA0VIRi86kCSU D9qvZ3Vl07MKD2hsvFkGZJOQfEaYv5QLpCWv6RCjfDNC05IyMeSW4H18Fr/BoHX8FXHV3+9H LsbJQ/Zrofd/Cm+TKEmXLAtYc7iXvzV+mw3/u0VYqjEy/CRYa62Ah0NNNVIuswfRVIfx3UZo jX4y8j2Kh0jtUV5A4GGf8H3SzQ/cB0I7wTRHU9mCPVCtH6M26nPumL4Zr4D6uGnAmPf9xnlX lokOn2Qxf/mBldsL41PDbEpYhZvvn5kJ/Z9Qh7Fks/hfTbbJowARAQABzSxBbWVsaWEgQW5k ZXJzZG90dGVyIDxhbWVsaWFAYW5kZXJzZG90dGVyLmNjPsLBlwQTAQgAQQIbIwUJCWYBgAUL CQgHAgYVCAkKCwIEFgIDAQIeAQIXgBYhBD1dtsq4UrmIBVpqb/7xwpS06AtVBQJY1pdiAhkB AAoJEP7xwpS06AtVI0sP/Al6eUycymdT1R7v0uEQv4coonnOUV6FKj/4wc+wM+A0h7vlqADr j4nS7RRSQRUo8xJ9tvR9J1Eyske5bvakOYv64f9PrNY1Z6ABhJzK34kJxekEfeLmpXAB4wst GhD8dGC/z/b9Oau0AW1GWIP0eNWq4acDf9Qf+j0wqQi25OZUXnu5KeUX7mvPTHKZLyEZlwHV atXmZHWKnQWtEPZTQfv/zESsoBAm1TbaLapgxVG9uLW+I9kj72TB/AZ5hMSKMYWZ2dC+8eEs Xd22tn6907aUmZhFT89jbEyS996WeZ+SQ5G1Okrq02qYXcCi5vm3AuvLlbRYHguh42TLaVq1 er7PiYOYH77FFmnZWW6ChFnf7xsDep2tpNxn+QUZLgO3+5kL7TfO7D2H57kjVVMdkNn+01nz kfcn76K7nuU6Dc4pItPzbDndhdxulnm9cicOEfGQqvta9ffxk4YWyAu9PUNARVRNf6OnoDQQ Zo8l1o37q9PFXJyQwzvxdd9u6uzTny2wp9eig75pD3dYHCRIQeYmkv1kB81mc86cwgvuw1Qy /QwiCBNXSSuIvLO78b+/dB0DLVQC/c6gtyWXRpC4ysF4EaEZophjT60d12YRanR+fWuH+qu2 wsT+z1d4tC5/6UJMPr3bxREh9JHThm5Y3cDBmcn0PGqtDKkwjCkqex5bzsFNBFjWlnsBEADF jusaTo9W8VeWluCK/oJqyyyF1wMvou0ldfuoOpUZrOqsY67TM7yBqsv5COPVgAV+xp+axor5 oHWxibd283w0Ok4dK6tvtNGwUqyDRlHtQ92DG/u4Tg5eOwrHNUn73/rfeBD9KhKAXcNKKPoc cLgR8oQTXpO7eRo+0NI52pXQ6LdZ0wddYeTcHglsNKN1TK+CyYS7xfGolsZXXoBOKcyhfj/c kPFVIHWpGpEtcYWTZWvXgLprzHvpKzkzNyBwejaXE+bqCT2dRl3omI/e2t3Vq33hFUUSAdxr FF29vMX/YsSnYqsFOIoayna+TRsDFAfZvbvHBOMckeJzvA8yBdadw7CM08Uw8wqH7n9BA3oq //QpZJekPfrc2E9nM9H0d51T0uStLMbYDWdwxvfPA3p9z8L91vobt8bM/Jbhl9h+X2Yq9oBC iTI7b2izYd9FVG4BwBIdeh3bh9R9HExgRjF3XQ6uafT3pcVOPASdv9FRUYH1Va7QWQifoha0 B7UXKx1OpX1Z6XR2NQ9KN2MvlwvBKdHtm6tBzUIFzW6D8vUOxiYKBA4fppJt/LJF4jsaCEyI /CVQnkC0yL5DKFOdigxTipwEL9Uc6r7VfR5OAGFd6vzuJFy+j+/WhzaVT1oVYp6eQXh0bBtq qH2Mq9sAMnIjvaNYIKiQKgMa1Pa3OWQbQQARAQABwsF8BBgBCAAmFiEEPV22yrhSuYgFWmpv /vHClLToC1UFAljWlnsCGwwFCQlmAYAACgkQ/vHClLToC1XnRw//W4lzE8FddceKXGRwO/T1 u4uzH9EjPCj+3/eHCrLI+h1m7QPyH1DrFAtZBoA6UoaF0+vIAJXM9/HI1FZ09EUdJr5X/+YR EErFom4DbE1FK8fpK1/Hw2zI+7Xa8bVkmYrKhMGhi1Gq6Dtksn/H4USdJL53ZPt10SVNK7H3 w93Yp1GC4+0zWjfrsKfsHYZZr2SZyb5/gZlngfgaqiQLhIcPYmiU1GQi9QWkGxWRxk0YQXBw hekewvgltATxlRSCwguAi4uck9fAct9GGdpsshSOgAb9YIAnEV3EqaGnf0PknXp3vNHAZWrf M+RyuNdm2L5TjDU0rIrvyqGP3pR33cREGOAil5Sz2uFArmwsPt8VffbEXlf7qZqRBKaYeKt0 qnxKMx1+e1JilVsfb8qtnAWAFDyR0HMlVj/dvGAmq/auPSOAUWRSnDRyT6rv/vXxrbkL4uxW ax46qdpDhR15mS5MTng6b5b3Uox7xlveo/Sx71AdNf4goPvB/ntv0DiMuh+fmLGk3zrxs4Xd 30Sx+qQwVaXR5xc5rgnF81wvfmuAOb2eP9mpD6DoabkpxC8fLk17AK7Q1ZTgcZ+8XLRFnavd PrwCa9RU0BF53lJMSTPzyBcMwZ4sqA6Z5IRFVt7rEbSeeD8REiawo+FvVt9j0fKdNEBeaJ3W Y5hlhNPcUXr4q1U=
Organization: ARTICLE19
Message-ID: <813e8749-386a-91b6-8ab5-b27517ed5c8c@article19.org>
Date: Wed, 18 Jul 2018 19:19:13 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0
MIME-Version: 1.0
In-Reply-To: <45C74465-32B3-4461-AB2B-53305B6E47DF@sinodun.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Language: en-US
X-Virus-Scanned: by clamav at smarthost1.samage.net
X-Scan-Signature: ff8282cba176f16c0cd93a6055202d23
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/ZdYcXLzU3--SCPUglS6Gcz3HXDY>
Subject: Re: [dns-privacy] New Version Notification for draft-dickinson-dprive-bcp-op-00.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jul 2018 17:19:27 -0000
In ** 1. Introduction .... More recently the global legislative landscape with regard to personal data collection, retention, and pseudonymization has seen significant activity with differing requirements active in different jurisdictions. For example the user of a service and the service itself may be in jurisdictions with conflicting legislation. It is an untested area that simply using a DNS resolution service constitutes consent from the user for the operator to process their query data. The impact of recent legislative changes on data pertaining to the users of both Internet Service Providers and DNS open resolvers is not fully understood at the time of writing. ... ---> I'm wondering if the legal principles are really all that different between jurisdictions? Purpose limitation and data minimization (or "as few data as are required to perform the purpose" or equivalent) are fairly common, and RFC6073 already considers data minimization a super-heading for stuff like storage limitation (which in some jurisdictions is separated from data minimization in the law, for example). The big differences are only in oversight (who is competent to enforce) and perhaps contractual practise (what is the expected contents of a contract). In the spirit of this draft, maybe it's better to leave it at just "significant activity [full stop]" and not point so much to differing requirements? best regards, Amelia On 2018-07-16 21:25, Sara Dickinson wrote: > There are now updated versions of these two drafts which have > cross-references to each other….. > > https://tools.ietf.org/html/draft-bortzmeyer-dprive-rfc7626-bis-01 > https://tools.ietf.org/html/draft-dickinson-dprive-bcp-op-01 > > Sara. > >> On 2 Jul 2018, at 13:59, Sara Dickinson <sara@sinodun.com >> <mailto:sara@sinodun.com>> wrote: >> >> Hi All, >> >> An update to draft-dickinson-bcp-op (with a minor name change >> generating a -00 version) is now available. >> >> The major differences to draft-dickinson-bcp-op-00 are : >> >> * Reworked the Terminology, Introduction and Scope >> * Added Document section >> * Reworked the Recommendations section to describe threat >> mitigations, optimizations and other options. >> * Split the recommendations up into 3 subsections: on the wire, at >> rest and upstream >> * Added much more information on data handling and IP address >> pseudonymization and anonymization >> * Added more details and comparison of some existing policy/privacy >> policies >> * Applied virtually all of Amelia Andersdotter's suggested changes. >> >> When re-writing this draft in terms of privacy threats and >> mitigations it became clear that a ‘bis' to RFC7626 that included >> threat assessments from all the privacy related work that has >> happened since it was written (e.g. DNS-over-TLS) would be very >> helpful. That bis document is also now available (see below) and >> going forward the hope is the these two will be companion documents >> with RFC7626-bis describing the threats and the BCP describing the >> mitigations. >> >> When reviewing, please note that due to time constraints I haven’t >> managed to get the cross references to the very latest draft versions >> updated in the documents, but will do so when draft submission re-opens. >> >> Best regards >> >> Sara. >> >> >>> Begin forwarded message: >>> >>> *From: *internet-drafts@ietf.org <mailto:internet-drafts@ietf.org> >>> *Subject: **New Version Notification for >>> draft-dickinson-dprive-bcp-op-00.txt* >>> *Date: *2 July 2018 at 18:31:13 BST >>> *To: *"Sara Dickinson" <sara@sinodun.com <mailto:sara@sinodun.com>>, >>> "Benno J. Overeinder" <benno@nlnetlabs.nl >>> <mailto:benno@nlnetlabs.nl>>, "Benno Overeinder" <benno@NLnetLabs.nl >>> <mailto:benno@NLnetLabs.nl>>, "Allison Mankin" >>> <allison.mankin@gmail.com <mailto:allison.mankin@gmail.com>>, >>> "Roland M. van Rijswijk-Deij" <roland.vanrijswijk@surfnet.nl >>> <mailto:roland.vanrijswijk@surfnet.nl>>, "Roland van Rijswijk-Deij" >>> <roland.vanrijswijk@surfnet.nl <mailto:roland.vanrijswijk@surfnet.nl>> >>> >>> >>> A new version of I-D, draft-dickinson-dprive-bcp-op-00.txt >>> has been successfully submitted by Sara Dickinson and posted to the >>> IETF repository. >>> >>> Name:draft-dickinson-dprive-bcp-op >>> Revision:00 >>> Title:Recommendations for DNS Privacy Service Operators >>> Document date:2018-07-02 >>> Group:Individual Submission >>> Pages:32 >>> URL: >>> https://www.ietf.org/internet-drafts/draft-dickinson-dprive-bcp-op-00.txt >>> Status: >>> https://datatracker.ietf.org/doc/draft-dickinson-dprive-bcp-op/ >>> Htmlized: >>> https://tools.ietf.org/html/draft-dickinson-dprive-bcp-op-00 >>> Htmlized: >>> https://datatracker.ietf.org/doc/html/draft-dickinson-dprive-bcp-op >>> >>> >>> Abstract: >>> This document presents operational, policy and security >>> considerations for DNS operators who choose to offer DNS Privacy >>> services. With the recommendations, the operator can make deliberate >>> decisions which services to provide, and how the decisions and >>> alternatives impact the privacy of users. >>> >>> This document also presents a framework to assist writers of DNS >>> Privacy Policy and Practices Statements (analogous to DNS Security >>> Extensions (DNSSEC) Policies and DNSSEC Practice Statements described >>> in [RFC6841]). >> >> >> >>> Begin forwarded message: >>> >>> *From: *internet-drafts@ietf.org <mailto:internet-drafts@ietf.org> >>> *Subject: **New Version Notification for >>> draft-bortzmeyer-dprive-rfc7626-bis-00.txt* >>> *Date: *2 July 2018 at 18:54:30 BST >>> *To: *"Sara Dickinson" <sara@sinodun.com <mailto:sara@sinodun.com>>, >>> "Stephane Bortzmeyer" <bortzmeyer+ietf@nic.fr >>> <mailto:bortzmeyer+ietf@nic.fr>> >>> >>> >>> A new version of I-D, draft-bortzmeyer-dprive-rfc7626-bis-00.txt >>> has been successfully submitted by Sara Dickinson and posted to the >>> IETF repository. >>> >>> Name:draft-bortzmeyer-dprive-rfc7626-bis >>> Revision:00 >>> Title:DNS Privacy Considerations >>> Document date:2018-07-02 >>> Group:Individual Submission >>> Pages:22 >>> URL: >>> https://www.ietf.org/internet-drafts/draft-bortzmeyer-dprive-rfc7626-bis-00.txt >>> Status: >>> https://datatracker.ietf.org/doc/draft-bortzmeyer-dprive-rfc7626-bis/ >>> Htmlized: >>> https://tools.ietf.org/html/draft-bortzmeyer-dprive-rfc7626-bis-00 >>> Htmlized: >>> https://datatracker.ietf.org/doc/html/draft-bortzmeyer-dprive-rfc7626-bis >>> >>> >>> Abstract: >>> This document describes the privacy issues associated with the use of >>> the DNS by Internet users. It is intended to be an analysis of the >>> present situation and does not prescribe solutions. >>> >> >> _______________________________________________ >> dns-privacy mailing list >> dns-privacy@ietf.org <mailto:dns-privacy@ietf.org> >> https://www.ietf.org/mailman/listinfo/dns-privacy > > > > _______________________________________________ > dns-privacy mailing list > dns-privacy@ietf.org > https://www.ietf.org/mailman/listinfo/dns-privacy -- Amelia Andersdotter Technical Consultant, Digital Programme ARTICLE19 www.article19.org PGP: 3D5D B6CA B852 B988 055A 6A6F FEF1 C294 B4E8 0B55
- [dns-privacy] Fwd: New Version Notification for d… Sara Dickinson
- Re: [dns-privacy] New Version Notification for dr… Sara Dickinson
- Re: [dns-privacy] Fwd: New Version Notification f… Puneet Sood
- Re: [dns-privacy] New Version Notification for dr… Amelia Andersdotter