Re: [dns-privacy] How do we want to use draft-ietf-dprive-phase2-requirements?

Andrew Campling <andrew.campling@419.consulting> Tue, 27 April 2021 21:25 UTC

Return-Path: <andrew.campling@419.consulting>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 782373A2132 for <dns-privacy@ietfa.amsl.com>; Tue, 27 Apr 2021 14:25:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netorgft5189650.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1KnQ-t32_47d for <dns-privacy@ietfa.amsl.com>; Tue, 27 Apr 2021 14:24:59 -0700 (PDT)
Received: from GBR01-LO2-obe.outbound.protection.outlook.com (mail-eopbgr100068.outbound.protection.outlook.com [40.107.10.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2A423A2131 for <dns-privacy@ietf.org>; Tue, 27 Apr 2021 14:24:58 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=c40fo1zuwnPe3NONUeBzC9Sc17y0SagZB89Td8nAG5IwYiJo52p1pw4QfWLYJhoFdC23/eEKN3yCv6KnMY/9FrL3LNSrApufB9Oht3w7/z0i/aD4lYRdZ2QMt2CEG751Mjcvq1NYNaejd5/+yI2kcaoVap7njeiSmuQfEpanzkM6i53w2OscvdphMF2wtSdbgj/7eFeTl1WzDTeorvOCxlzN9+4pm+0b2DgKFpFss0WU/a8cxvP0iCbdgHFCkEroLa4FIBEs8N+T6j4L16bCFy1caGNrS6uNQ1jhizI8CYeO37KSmXpKA2ufKcEZy+frp/1JtgyYbbSB6iIBg7xXXw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GjCLmuLeOtACmWV/zi2FuObMW3aK5DHFB1lPIdlhEog=; b=A9KtmTGlGDKz/wsvQ0TXzSFth+dvAsqCbpOEORr6CdS7gAKz4edQRmPmRYo5xWDhZFTzmiIXN4gpY4ZioEN/Rt8l2Dy3pCrguoQTKEzQuqCzg6aTwGUb805rvDzmL8zN0KGg5QzIRUKwpgbV7fVUdealyxAvM4axwI4fL3WGfFFJSb/MExTfcactnJWysBMevUQ8pJvo+H6UvjihNEwxdyisdgAxztF/2Tv+NM04XkMBgTOdcGP+Hg8LzILG8XNvz9J5OEZYFJsInPZrwrCL7YbtDLJnLq/P5ReKa+yGwawo/Jve9SY1yLKcyq2vo0cb9jyyE1uj6udhkJ+gC78tuw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=419.consulting; dmarc=pass action=none header.from=419.consulting; dkim=pass header.d=419.consulting; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=NETORGFT5189650.onmicrosoft.com; s=selector1-NETORGFT5189650-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GjCLmuLeOtACmWV/zi2FuObMW3aK5DHFB1lPIdlhEog=; b=rwnnMeK2VcZiSZK36GaxclVsXM5xzsazLlEqCpuuOWnScMX2Cvpd+J5CQ5TY8tUDd77rJbqsrLsOa4GmZFKAqiuNuelBhwNVOD3J5R3dKhL8bP5Pbh7pc/IoOaeN3MGO0akWURNjjHkQ5QXjaylB5ej9ppQq7/I8XQq5U2WF3qI=
Received: from LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:67::18) by LO2P265MB1021.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:8f::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4087.25; Tue, 27 Apr 2021 21:24:56 +0000
Received: from LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM ([fe80::3cdc:773c:a0:88f7]) by LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM ([fe80::3cdc:773c:a0:88f7%6]) with mapi id 15.20.4087.025; Tue, 27 Apr 2021 21:24:56 +0000
From: Andrew Campling <andrew.campling@419.consulting>
To: Brian Haberman <brian@innovationslab.net>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: [dns-privacy] How do we want to use draft-ietf-dprive-phase2-requirements?
Thread-Index: AQHXO5fOrdU8q2ju40WsfZiRvqKO4KrI3XGA
Date: Tue, 27 Apr 2021 21:24:56 +0000
Message-ID: <LO2P265MB0399126395D4909C0CD29D29C2419@LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM>
References: <121ae494-d7f0-37da-cf53-44f75df2fa75@innovationslab.net> <51ecd372-c178-14ff-5168-81e2e87350e9@innovationslab.net>
In-Reply-To: <51ecd372-c178-14ff-5168-81e2e87350e9@innovationslab.net>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: innovationslab.net; dkim=none (message not signed) header.d=none;innovationslab.net; dmarc=none action=none header.from=419.consulting;
x-originating-ip: [2a00:23c4:a499:2e00:61e3:d6ce:a30e:6381]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4fd3c350-654d-407d-9e2e-08d909c2e7c4
x-ms-traffictypediagnostic: LO2P265MB1021:
x-microsoft-antispam-prvs: <LO2P265MB102199CB77705E9AB0D107C4C2419@LO2P265MB1021.GBRP265.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: du5QAt2OVJ4PFhN4p/KjYxpehpiWdKW+LmVe30jA54fAFCUHvX/Wyr2nxzUhgvGadCv6ETQVsuBLAek/TXciByQ7byWtjamVqW4uOR3jooqWvDyF89SqkANUY9mb33QFc1KIQ/lzoybbL55sr5/rcxOF5puKWOWZDwPLgyiebon8reIv7NJtJDsXyFI1kzumwQm3wmReRRpOZ1LhiNinWHSZKS8zxDBaa37p9ITvsDaXYEIq5q/aEY6rB1+lvxrUTzv/BRCDviPbAwmTxcWvT3NZi1zx64h4y94bba9jIBtQtPGCOBBHGCacfFcFIkix5EqD4fTD4Gkz0ZESQTgDQEkigx8GLde7+UQuuVo+kte9tq/JMH0jyh8Lb4dqwjSdLVS0OS913j/fYGdYeFo4ZGUOkMufMiuWZeBBm0fKkzUsotLai5f7l/2y1wbJ3VdItmzyu6NSWu1m68Ol+vnnoI9G8FmSXNwURe1A8KTR7Ivcl8s5PN8z89chb9THrEY6blOyZWSvWGaI5tVqFqJRduNO2Js8pL+Jj14/8fCPiCKdrh5TymJTwJ2vTWALfaCXOB27mR6N3op0yFvHKswy1iP31xSeHmVGN+U+JjBcYjNyOSJE5VCL1bPMga/dpugZ6+xcc5GCbzjNvThOLrJ0Jg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(136003)(366004)(376002)(39830400003)(396003)(346002)(66556008)(64756008)(66446008)(76116006)(66946007)(33656002)(66476007)(186003)(86362001)(316002)(52536014)(6506007)(71200400001)(55016002)(9686003)(83380400001)(5660300002)(44832011)(2906002)(122000001)(7696005)(478600001)(8936002)(110136005)(53546011)(38100700002)(8676002)(46492009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?Mm1pYkNuTkRUVEp2Z3R6Qm10Y3RrYWp0cE9pcTFOS2JHV3RhbUhNU0p0MkdC?= =?utf-8?B?a2M3Y0U2dnNxTitzSHlGalNwNVVrTWlzT1RFVmJkSHJqZlBMTW16U3k4OHd4?= =?utf-8?B?WThXYTJyUkRtRk1ubG9rSlZ2Wjk0R0FwamdENTQybEZoZjg2cllzMU94Y1VW?= =?utf-8?B?RU5xMk5MbGNDeVl6Rmt4dEU4cGJ3UDMrTnl0OGxxT3VOMm5YUTdheVNBZC9l?= =?utf-8?B?M25UQ2JVREtBNi9pOXN2U09ncnRZTks1MDlDY0kxekJ5YTNQcTFTeUdWYUJL?= =?utf-8?B?S0sxWjhLWWF1VVpFYkx6OXJQb0U3UUVkRHh3YU9LK3RJeitETzc5SjJKaGN0?= =?utf-8?B?dEEzMEQ3b00ya1N0MmFqMDF3UDBmL0trTElHOXRSd1V6WENBV3R3czA5NStI?= =?utf-8?B?ZitvTVdNUlNiakZWN3I2dnB4R3VHcEorZUpJQmYyQWNRMzFpZk43MHVFWkdw?= =?utf-8?B?Q2ZSWGxzMm1XTlR1NXBsV05abTlGb1pZNC9lK3U0b2xuam9VM1RDTkhkUlJa?= =?utf-8?B?Yi92SWlxYVB6RFNpRWUybGdzbUNLaTFIZHJxc0dpRXhoT2ZzWGp4Uk12dzBQ?= =?utf-8?B?SVptSVdXUCtwZUVuR0RSd1Jwc2pKSmdKRXpJYk9QUE9TU2VjNklCMnpCQU9L?= =?utf-8?B?dWZydVMwZVdCdXFVL1VkVnNRYjR5ajhBUWlPdnVyRlVKQ3FuVXBJVGVpcHdD?= =?utf-8?B?ZGM5aG9TbXhBMjh3UE5hMWZneExtczRadHZLWi92Y0x4bkFpODc4QmVkRmpC?= =?utf-8?B?NzIycHh5ZU9NYUJDejArOVFkaXNPcVhLdTErYllVVjl5a09YaklCSkhLMGY2?= =?utf-8?B?emo0N0tLK2hFanBVc1I2M01HU2NiNFd5NXI2OW1tanBLQ3ROaDRzcVFjcnBn?= =?utf-8?B?SkpxZ1BJZjRCc0V0R2RUZDJiRERPMjJ3L2IwejlTSlZucGJRWllsc1JvdFAv?= =?utf-8?B?anBISG5mcHl1V2ozd0N5RFltZC9IUGxMWExqM2tRaVlYMG5Na0wwMDIyQkk2?= =?utf-8?B?RGVHSlRiem5NeVM3UVovNFNSQ1RDeS9LTHNyMDNBWXo2Z0JiYzB5YlB2eEg5?= =?utf-8?B?OFVYR1RqTU56TE9UemxCVWI4SjdiVzhMb0wraWJPKzVhZmxvTXNpN3hSQzAx?= =?utf-8?B?Wk95SDlDbWRZcG9lalNSczUvcG5wNEhlMDRaUzJaQnl2K3d1RHA0TnNLQ0pn?= =?utf-8?B?ZmtNa0U1NEJFSlJWcllZYmQ0Z1NZS0pxNmxBRmxCTmY3WER6dmFTbDl4L0xS?= =?utf-8?B?Si80M3RjTzM2d0d0OU1XbXVmVG8rQy9vdlYzNW83cUd3bmswT2NkcExFUUpN?= =?utf-8?B?NWNqcUdyREd1TkYrb3l3U2NoL3VrSnk1eEl4dDkyQXVUckZPL3pEakhnV1hY?= =?utf-8?B?VGJSR2lXdSs2aENlVjBzSzNiOGVQZ3cvVkZRVUN6MmFHaXRXWXJtU2RwK1R2?= =?utf-8?B?aFhVQVJ3MlhrMTZvajVlc1VwYXBzaDVJaE51MEFrUVhQWDc1dzgxL2tIQ2ti?= =?utf-8?B?bTRPeThZZDBQSTlTUjRtamhSYmk1TkdGYzBQU05jR25Wc0t0ZGdjVjh0MXFG?= =?utf-8?B?TkFxeThEUVBRS0QyMXVUa0owMk9Ebkl6Z2d3VDJ5US9qR2tnZUZnWWpIUzBZ?= =?utf-8?B?bW92Tm1Ub1JQazZBTjlhbjZsL2IwaGk2K3lYcWhZbTVVTGlSOStmdytYaWph?= =?utf-8?B?akZWZDJUS3NvaWZMaVRPUjR5T08zdWVBZXB3SWFuVlpGbWtmUEZlUXBJWm8v?= =?utf-8?B?b2w2bXQzZFFFWDRQOWwwTUFIbjBUbklIM1N1UXg3Nm1uOGYwMk5LNU5WRGsz?= =?utf-8?B?STZYeWpzOGJIQW9ZUFNBeTNUSU4vWkdncGpwVVBNNjdSU3VURlBmQ2xEcWpq?= =?utf-8?Q?eGCipetYxAHwN?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: 419.consulting
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 4fd3c350-654d-407d-9e2e-08d909c2e7c4
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Apr 2021 21:24:56.5164 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9c2ced3e-7522-4755-87dc-f983abc66ec3
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: btWAx29m3WxLdBsRd1pTK+VRoMUU2TbZCh4ajBObaSz80wUdMR+uplex2z1V+VL/ShTuQPt8qaCA1JuavM/EWa7xUD18/U9G4i98Il2qU7E=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P265MB1021
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/bKgAriN-MF4KVa56PxYKv2TxzlI>
Subject: Re: [dns-privacy] How do we want to use draft-ietf-dprive-phase2-requirements?
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Apr 2021 21:25:01 -0000

On 26 April 2021 20:45, Brian Haberman wrote:

> Does anyone else have an opinion on this?

> On 4/19/21 5:13 PM, Brian Haberman wrote:
>> All,
>>      As was raised on the thread discussing suggestions for the 
>> requirements draft, there is some question on how the WG wants to use 
>> draft-ietf-dprive-phase2-requirements in progressing our 
>> recursive-to-authoritative privacy work item. The draft currently has 
>> one sub-section that describes requirements (5.1) and another section 
>> that describes optional features (5.2), albeit with 2119 SHOULDs.
>> 
>>      My question to the WG is how do we want to use this draft? I see 
>> four possible approaches, but I am sure someone will point out others.
>> 
>> 1. Strictly requirements - these would be MUST-level functions that 
>> the WG determines have to be supported by any solutions draft.
>> 
>> 2. Strictly design considerations - these would be functional areas 
>> that the WG determines need to be considered, but not necessarily 
>> included, by any solutions draft.
>> 
>> 3. Requirements & design considerations - This is generally where the 
>> current draft sits IMO.
>> 
>> 4. Drop the draft and let the solutions flow.
>> 
>> Let's discuss the focus of the draft and then we can determine what 
>> updates are needed/necessary.
>> 
>> Regards,
>> Brian
>> 

Building on the Root Server Operators Statement on DNS Encryption, I think there would be benefit in gaining input from TLD operators to establish whether they are interested in adopting encryption, as well as any insight into deployment considerations, the relative attractiveness of potential solutions etc.  Developing solutions without sufficient understanding of the requirements and operational concerns of the intended beneficiaries risks wasting a lot of effort pursuing the wrong solutions to the wrong problems.  Capturing this information would seem to fit within a requirements document.  

Andrew