[dns-privacy] ALPN protocol ID for DoT
"Reed, Jon" <jreed@akamai.com> Thu, 12 December 2019 15:01 UTC
Return-Path: <jreed@akamai.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC90B1200A1 for <dns-privacy@ietfa.amsl.com>; Thu, 12 Dec 2019 07:01:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WJZe9oo9ZOak for <dns-privacy@ietfa.amsl.com>; Thu, 12 Dec 2019 07:01:16 -0800 (PST)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51529120018 for <dns-privacy@ietf.org>; Thu, 12 Dec 2019 07:01:16 -0800 (PST)
Received: from pps.filterd (m0050096.ppops.net [127.0.0.1]) by m0050096.ppops.net-00190b01. (8.16.0.42/8.16.0.42) with SMTP id xBCEwX2m028045 for <dns-privacy@ietf.org>; Thu, 12 Dec 2019 15:01:15 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : subject : date : message-id : content-type : mime-version; s=jan2016.eng; bh=842kXoSeBql/DQuPpm7GFVH2P6Nv8INM2LF7G1d25qI=; b=lKaUzLmLIx9Oii1W54D0klFgNzkk6c3rIMXjo3ehMTaRY9+AqLSrASQHzE5Fc64LzYWo qPKVlDLegI4usbnXr1KYRmIyGQ/5sIamHKea4Z1nDzCYv52clOFnaSyoWU55C/45ZVsL RlBDkT2A0e/BX6sea8jlaX7Iee97++iXCQwdCyY8uiLLKXGQrCpeSG6s/pnxAToYh1q4 eCHbJv99WZOKTcKG68Ovz69F/xJ6/uQI1ohxlbg7U2/XnBAO0caP6d7V/UEVAsdGTWut hylTCZ/eQRnCEP16wFQRwRfuUUYy8ZN+oLcx3/WMVzhNG7U2ZPdW/aqTSiG82kuynagJ gw==
Received: from prod-mail-ppoint2 (prod-mail-ppoint2.akamai.com [184.51.33.19] (may be forged)) by m0050096.ppops.net-00190b01. with ESMTP id 2wu7wkjyub-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <dns-privacy@ietf.org>; Thu, 12 Dec 2019 15:01:15 +0000
Received: from pps.filterd (prod-mail-ppoint2.akamai.com [127.0.0.1]) by prod-mail-ppoint2.akamai.com (8.16.0.27/8.16.0.27) with SMTP id xBCElH2G030725 for <dns-privacy@ietf.org>; Thu, 12 Dec 2019 10:01:14 -0500
Received: from email.msg.corp.akamai.com ([172.27.123.34]) by prod-mail-ppoint2.akamai.com with ESMTP id 2wr8a02dny-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <dns-privacy@ietf.org>; Thu, 12 Dec 2019 10:01:13 -0500
Received: from usma1ex-dag3mb6.msg.corp.akamai.com (172.27.123.54) by usma1ex-dag3mb2.msg.corp.akamai.com (172.27.123.59) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 12 Dec 2019 10:01:05 -0500
Received: from usma1ex-dag3mb6.msg.corp.akamai.com ([172.27.123.54]) by usma1ex-dag3mb6.msg.corp.akamai.com ([172.27.123.54]) with mapi id 15.00.1473.005; Thu, 12 Dec 2019 10:01:05 -0500
From: "Reed, Jon" <jreed@akamai.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: ALPN protocol ID for DoT
Thread-Index: AQHVsPz6ZQ20cExv9Um/mB5nyYLqhg==
Date: Thu, 12 Dec 2019 15:01:05 +0000
Message-ID: <D59215DB-15F4-40F1-9606-C8BB6829BEE6@akamai.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3445.104.11)
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.19.113.4]
Content-Type: multipart/signed; boundary="Apple-Mail=_57C598F1-A5B3-41E5-9C14-7EDEE41E453B"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-12-12_03:, , signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1911140001 definitions=main-1912120114
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.95,18.0.572 definitions=2019-12-12_03:2019-12-12,2019-12-12 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 adultscore=0 suspectscore=0 mlxlogscore=999 priorityscore=1501 phishscore=0 impostorscore=0 clxscore=1011 mlxscore=0 malwarescore=0 spamscore=0 lowpriorityscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-1910280000 definitions=main-1912120115
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/iZ2rDIhFB2ZWsGC3PcdBVLGa8Do>
Subject: [dns-privacy] ALPN protocol ID for DoT
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Dec 2019 15:01:18 -0000
Hi all,
I'm planning to request a registration of an ALPN ID[1] for DNS-over-TLS. One primary use case we have is supporting both DoT and DoH on port 443, when port 853 is blocked between clients and the servers (this is by mutual agreement, as discussed in RFC 7858 ยง 3.1). I plan on requesting the protocol ID 0x64 0x6F 0x74 ("dot"), following the conventions of using all lowercase in registrations.
Per discussion with one of the expert reviewers, I'm polling the list to see if anyone has objections -- if so, please let me know. I'd be interested in hearing the objections, and what alternatives might be proposed.
Thanks,
Jon
[1] https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#alpn-protocol-ids <https://www.iana.org/assignments/tls-extensiontype-values/tls-extensiontype-values.xhtml#alpn-protocol-ids>
--
Jon Reed
jreed@akamai.com
Nameservers Service Performance
Akamai Technologies
- [dns-privacy] ALPN protocol ID for DoT Reed, Jon
- Re: [dns-privacy] [Ext] ALPN protocol ID for DoT Paul Hoffman
- Re: [dns-privacy] [Ext] ALPN protocol ID for DoT Martin Thomson
- Re: [dns-privacy] ALPN protocol ID for DoT Allison Mankin
- Re: [dns-privacy] ALPN protocol ID for DoT Martin Thomson
- Re: [dns-privacy] ALPN protocol ID for DoT Allison Mankin
- Re: [dns-privacy] ALPN protocol ID for DoT Martin Thomson
- Re: [dns-privacy] [Ext] ALPN protocol ID for DoT John Levine
- Re: [dns-privacy] [Ext] ALPN protocol ID for DoT Reed, Jon
- Re: [dns-privacy] [Ext] ALPN protocol ID for DoT John R Levine