IETF Logo Mail Archive

Re: [dns-privacy] I-D Action: draft-ietf-dprive-dnsodtls-14.txt

"Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com> Sat, 17 December 2016 01:35 UTC

Return-Path: <tireddy@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1001C129471 for <dns-privacy@ietfa.amsl.com>; Fri, 16 Dec 2016 17:35:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.417
X-Spam-Level:
X-Spam-Status: No, score=-17.417 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-2.896, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NeDvUaPzbd_Y for <dns-privacy@ietfa.amsl.com>; Fri, 16 Dec 2016 17:35:37 -0800 (PST)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 535DF129466 for <dns-privacy@ietf.org>; Fri, 16 Dec 2016 17:35:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12286; q=dns/txt; s=iport; t=1481938537; x=1483148137; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=fzSg8OsONQbUAn3KUbknXv8mA8kdAQM0IV/AyblSlSg=; b=RT8sAKhAv/sG6fJs5Zd0RU6h+ppdTr8IcaRdOwVbkFsjcG5Me+bulO59 cHf6pEg+Qq/6gJI0BkUcm5B05vly0jDg1p5SKKLtliT9alv9muPEvoljF 5msf4nftT2uk91ICohvPd0umAf8ynYB9Nf1g6kQm0VmbFZl3TlzoS9pKV k=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AkAQAllVRY/5FdJa1dDgsBAQEBAQEBAQEBAQcBAQEBAYJzRAEBAQEBH1qBBgeNSJZYj2iFJYIJKoV4AhqBfj8UAQIBAQEBAQEBYiiEaAEBAQQSEQpMEAIBCA4DBAEBKAMCAgIwFAkIAgQOBQgaiEkOmyABjXaCKIsdAQEBAQEBAQEBAQEBAQEBAQEBAQEBGAWGNoRZgwOBJ0yCToJdBZpwAYZRilmQVo4ZhA4BHzeBIhaFIztyiDaBDQEBAQ
X-IronPort-AV: E=Sophos;i="5.33,360,1477958400"; d="scan'208,217";a="187296739"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 17 Dec 2016 01:35:36 +0000
Received: from XCH-RCD-019.cisco.com (xch-rcd-019.cisco.com [173.37.102.29]) by rcdn-core-9.cisco.com (8.14.5/8.14.5) with ESMTP id uBH1Zaon010641 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 17 Dec 2016 01:35:36 GMT
Received: from xch-rcd-017.cisco.com (173.37.102.27) by XCH-RCD-019.cisco.com (173.37.102.29) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Fri, 16 Dec 2016 19:35:35 -0600
Received: from xch-rcd-017.cisco.com ([173.37.102.27]) by XCH-RCD-017.cisco.com ([173.37.102.27]) with mapi id 15.00.1210.000; Fri, 16 Dec 2016 19:35:35 -0600
From: "Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com>
To: Bob Harold <rharolde@umich.edu>
Thread-Topic: [dns-privacy] I-D Action: draft-ietf-dprive-dnsodtls-14.txt
Thread-Index: AQHSV0cArYARSrRhuUOAMvib3sJk4aELDtcAgABLpKA=
Date: Sat, 17 Dec 2016 01:35:35 +0000
Message-ID: <9bd52d2aa19c499c93ee5b900f17999c@XCH-RCD-017.cisco.com>
References: <148185655650.24637.4545887412128553761.idtracker@ietfa.amsl.com> <CA+nkc8CewLVsTEF0s1_atWFMPgRNvb6__xwngsdZKMVkft4qdQ@mail.gmail.com>
In-Reply-To: <CA+nkc8CewLVsTEF0s1_atWFMPgRNvb6__xwngsdZKMVkft4qdQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.65.52.62]
Content-Type: multipart/alternative; boundary="_000_9bd52d2aa19c499c93ee5b900f17999cXCHRCD017ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/isfPyebqIcSbNoJEwugfqeST4j0>
Cc: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Subject: Re: [dns-privacy] I-D Action: draft-ietf-dprive-dnsodtls-14.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 17 Dec 2016 01:35:39 -0000

From: dns-privacy [mailto:dns-privacy-bounces@ietf.org] On Behalf Of Bob Harold
Sent: Friday, December 16, 2016 8:25 PM
To: internet-drafts@ietf.org
Cc: dns-privacy@ietf.org; i-d-announce@ietf.org
Subject: Re: [dns-privacy] I-D Action: draft-ietf-dprive-dnsodtls-14.txt


On Thu, Dec 15, 2016 at 9:49 PM, <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> wrote:

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the DNS PRIVate Exchange of the IETF.

        Title           : Specification for DNS over Datagram Transport Layer Security (DTLS)
        Authors         : Tirumaleswar Reddy
                          Dan Wing
                          Prashanth Patil
        Filename        : draft-ietf-dprive-dnsodtls-14.txt
        Pages           : 13
        Date            : 2016-12-15

Abstract:
   DNS queries and responses are visible to network elements on the path
   between the DNS client and its server.  These queries and responses
   can contain privacy-sensitive information which is valuable to
   protect.

   This document proposes the use of Datagram Transport Layer Security
   (DTLS) for DNS, to protect against passive listeners and certain
   active attacks.  As latency is critical for DNS, this proposal also
   discusses mechanisms to reduce DTLS round trips and reduce DTLS
   handshake size.  The proposed mechanism runs over port 853.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsodtls/

There's also a htmlized version available at:
https://tools.ietf.org/html/draft-ietf-dprive-dnsodtls-14

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-dprive-dnsodtls-14

These are not acronyms I use, but when it says:
"OCSP stapling, unlike OSCP"

Are those two supposed to be the same acronym?  (CS or SC in the middle?)

Yes, fixed. Thanks for caching the typo.

-Tiru

--
Bob Harold

v2.23.0 | Report a Bug | By Email