Re: [dns-privacy] Paul Wouters' Abstain on draft-ietf-dprive-unilateral-probing-12: (with COMMENT)

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Thu, 05 October 2023 20:30 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C06CBC151094; Thu, 5 Oct 2023 13:30:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.604
X-Spam-Level:
X-Spam-Status: No, score=-9.604 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="ZJsamukn"; dkim=pass (1024-bit key) header.d=cisco.com header.b="algzdghy"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wXpiaQSpjaFi; Thu, 5 Oct 2023 13:30:16 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CF71FC15108E; Thu, 5 Oct 2023 13:30:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=10055; q=dns/txt; s=iport; t=1696537816; x=1697747416; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=ZsaklYY5HUMpALXFc1UAHxx1dkVHJ17/3nzB5yJDGdM=; b=ZJsamuknpOAfG/AxIkbpqkcbQO8DE3tzFACi91seKWunLnKgu8B7GSP7 oe1Bd3Hz3oJcRjxZJRIqr0KwBi1ZKsDW3f18FmORiX5rXuxXU+3yh6TmW kqYC+Etw+HAr6U5FgzOapaXJgPmLLDrcUKhC37/eMcBQA+KU4veecXrY4 M=;
X-CSE-ConnectionGUID: eFkg26eUQHm41P4G/Pe3vQ==
X-CSE-MsgGUID: AZqlLh+wS/6fGdB3ecaShw==
X-IPAS-Result: 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
IronPort-PHdr: A9a23:ApsrqROhQe9WyxH9AIUl6nfIWUAX0o4cdiYP4ZYhzrVWfbvmptLpP VfU4rNmi1qaFYnY6vcRk+PNqOigQm0P55+drWoPOIJBTR4LiMga3kQgDceJBFe9LavCZC0hF 8MEX1hgrDmgKUYAIM/lfBXJp2GqqzsbGxHxLw1wc+nrC4jZjMmf3OGp8JqVaAJN13KxZLpoJ 0CupB7K/okO1JJ/I7w4zAfIpHYAd+VNkGVvI1/S1xqp7car95kl+CNV088=
IronPort-Data: A9a23:mhlwmKm//Xmo15+F+GohNx7o5gxoJkRdPkR7XQ2eYbSJt1+Wr1Gzt xJKWG+DOviJYmuhL9h/atiz/ExQ65XTztNrSAJtqXg1FVtH+JHPbTi7wugcHM8zwunrFh8PA xA2M4GYRCwMZiaB4E/rav649SUUOZigHtLUEPTDNj16WThqQSIgjQMLs+Mii+aEu/Dha++2k Y20+5a31GONgWYuaTtMs//b8nuDgdyr0N8mlg1mDRx0lAe2e0k9VPo3Oay3Jn3kdYhYdsbSq zHrlezREsvxpn/BO/v9+lrJWhRiro36YWBivkFrt52K2XCukMCdPpETb5LwYW8P49mAcksYJ N9l7fRcQi9xVkHAdXh0vxRwS0lD0aN6FLDvLFa8vpbNwnD/U36wms0yIwYOMNYGw7MiaY1O3 aRwxDEldBuPgae9x6i2D7A1wM8iN8LseogYvxmMzxmAUq1gGs+FEv6MvIMHtNszrpgm8fL2a tQIbzFsYTzLYgZEPREcD5dWcOKA3yOlI2QJ+QPJzUYxy0Hh1QhV0PvyC52LdPOGb55YlU+jp n2TqgwVBTlDZIDAllJp6EmEiunU2DvhWZwbH6yQ9/N2jhuU3GN7IBEOT1qlrLyyike/Qcl3K kEI9Gwpt6da3ECxR9fhGhy1vHDBsgYGWsRdVvA86QWE1qfO6gLcHnIDRD9HZ/QnudM4Azsw2 Tehnt7yChRuvaGbD3WH+d+pQSiaIyMZKyoJYjUJCFJcpdLiu4o0yBnIS76PDZJZkPX4NzL/m W6HkREegulKtZIkkJ22pk7+1mfESofyciY54QDeX2SA5wx/ZZK4a4HA1bQ9xasQRGp+ZgTR1 EXoi/Ry/8hVUs7QzH3lrPElWeD2t6zcYVUwlHY2R8F5nwlB7UJPamy53d2TDF1iPsBBcjjzb QqK4EVa5YRYOz2haqofj2ON5yYCk/OI+TfND6C8gj9yjn5ZL1/vEMZGPh744owVuBJw+ZzTw L/CGSpWMV4UCL580B29TPoH3Lkgy0gWnD2CG82gl0r7ieTGPRZ5rIvp1nPQNojVC4va+G3oH yp3bKNmNj0GCrSlO3mLmWLtBQlVdiFT6W/KRzx/L77ffVUO9JAJAP7KyrRpYJ1+g6lQjY/1E oKVBCdlJK7ErSSfc22iMyk7AJu2BMoXhSxgZ0QEYw33s0XPlK7yts/zgbNtI+l+nAGipNYpJ 8Q4lzKoWaQXEmmYp29MMfEQbuVKLXyWuO5HBAL8CBAXdJ97TAuP8djhFjYDPgFXZsZrnaPSe 4Gd6z4=
IronPort-HdrOrdr: A9a23:X8+6GqG/IDKYQkC4pLqFp5LXdLJyesId70hD6qkvc203TiXIra CTdaogtCMc0AxhKU3I+ertBEGBKUmsjKKdkrNhTYtKPTOW91dASbsSj7cKrAeQZhEWmtQtsp uINpIOduEYbmIKw/oSgjPIb+rIqePvmMvH9IKuq0uFDzsaFJ2IhD0JcjpzZ3cGPjWucqBJb6 Z0iPA3wQaISDA8VOj+LH8DWOTIut3Mk7zbQTNuPXQawTjLpwmFrJrhHTal/jp2aV5yKLEZnl Ttokjc3OGOovu7whjT2yv49JJNgubszdNFGYilltUVAi+EsHfpWK1RH5m5+BwlquCm71gn1P PWpQ07Ash143TNOkmovBrW3RX62jpG0Q6g9bbYuwqgnSXKfkN/NyNzv/MfTvIf0TtngDhI6t MP44tejesPMfqPplWk2zGCbWAYqqP9mwtRrQdUtQ0fbWPbA4Uh97D2OyhuYcw9NTO/54Y9HO Z0CsbAoP5QbFOBdnjc+nJi2dq2Qx0Ib127q2U5y4SoOgJt7TtE5lpdwNZakmYL9Zo7RZUB7+ PYMr5wnLULSsMNd6pyCOoIXMPyUwX2MF7xGXPXJU6iGLAMOnrLpZKy6LIp5PuycJhNyJcpgp zOXF5RqGZ3cUPzDs+F2oFN73n2MSiAdCWoztsb64lyu7X6SrauOSqfSEo2m8/luPkbCt2zYY f7BHuXOY6UEYLDI/c/4+SlYegmFZA3arxghuoG
X-Talos-CUID: 9a23:xiTkZW9uGsmVge4BBLyVv0M6Gc9/LHDg9VfVfxaAVUkucLDOV2bFrQ==
X-Talos-MUID: 9a23:1EFstA3dzbCPVy3tSc5U27zNgTUjypa3DGQN0oo9/JeKGiBaYDqWhQ+3Xdpy
X-IronPort-Anti-Spam-Filtered: true
Received: from rcdn-core-11.cisco.com ([173.37.93.147]) by rcdn-iport-3.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 05 Oct 2023 20:30:14 +0000
Received: from rcdn-opgw-1.cisco.com (rcdn-opgw-1.cisco.com [72.163.7.162]) by rcdn-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 395KU9L4015575 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK); Thu, 5 Oct 2023 20:30:12 GMT
X-CSE-ConnectionGUID: dJqTrYz8RZGs3fDX6DXkmw==
X-CSE-MsgGUID: hHHCs9LNSIiN2y4PvCemWw==
Authentication-Results: rcdn-opgw-1.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=evyncke@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.03,203,1694736000"; d="scan'208,217";a="4067437"
Received: from mail-mw2nam12lp2045.outbound.protection.outlook.com (HELO NAM12-MW2-obe.outbound.protection.outlook.com) ([104.47.66.45]) by rcdn-opgw-1.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 05 Oct 2023 20:30:07 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=H7IRgo5t/7grqfYAvfxkCUkyVG/m78oXZFgOD1nUyIFtiJvAs4oAnyslxS9+oav/tQmZEh7ZH9yZKmOgG86EiqlmnlpMxeqRuet5CkGfz3BsgZi9aFf33c/kWiCJxBhJ1ZN1cr36Uz2KfnRau439z7fVx+MXrEf5WdeBO47oNUm5C2vttZj/Ii1YMNMMg7uMarE6pR62e1WHqA0zP6a7vAKgxghtUPDKJHftv6/lYb6leQpL4N89Z+Bx1y/sU28ipLWVJgL7hOpw5nuE/WqiiRd8k8OeU7oiXOYqnCcxZcxuoisywpuyCIvpM/johVVX0JkcTHnImYphATRtuECu3w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=6ZLwciuFR+qyNARsMu5JsnkSadsvRu59Sapl6tdz5nU=; b=X+ubabF6evl01ibIqTOt9EgdtTbtMkdut9QewPlpnA9FqOxntkk7nhGXrkixg0SZljTiLzcnkHLGU2rMuHsBtcoEFF6nxz7iVnlumlWt0kOdU1gr36eULGbp3UPQS5bexUL5b/6+D1WF+C3quTUGFNzLy5z9TYz2yan1seGt043bVja5qbYxlADnr0xZ0uoXYwuM3OS1hLbp+HV53qt2k9wRgs0oUoIYdcWt0GNg/aFygkXWnV6eTAFWDHLD/M5Yb2PldpiuRzUkWgwETWKeToyg3gMkr7hajGiiCFPqshVcl9RoftYBWgijT0T73vnTFsOsJIk+srHmHhVyxZdf0Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6ZLwciuFR+qyNARsMu5JsnkSadsvRu59Sapl6tdz5nU=; b=algzdghyLiEji2McAZabAEBZBNM3QD3f4OPSEY9mTSAkzECR6SR2QF6xQS4QPCGdfH8LHNkkvsAcTMo4lEZU5ufPNVJvF3+ZztlmxUqkjMo1htH5GeqZzFwlKquXl6zK9qS42VumP/PXlUBB0fpKgmPTorwk727rQ4Q5SvDGTDc=
Received: from PH0PR11MB4966.namprd11.prod.outlook.com (2603:10b6:510:42::21) by BN9PR11MB5370.namprd11.prod.outlook.com (2603:10b6:408:11b::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6838.38; Thu, 5 Oct 2023 20:30:05 +0000
Received: from PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::39ff:ce41:c2e9:9603]) by PH0PR11MB4966.namprd11.prod.outlook.com ([fe80::39ff:ce41:c2e9:9603%5]) with mapi id 15.20.6813.027; Thu, 5 Oct 2023 20:30:05 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: Paul Wouters <paul.wouters@aiven.io>, The IESG <iesg@ietf.org>
CC: "draft-ietf-dprive-unilateral-probing@ietf.org" <draft-ietf-dprive-unilateral-probing@ietf.org>, "dprive-chairs@ietf.org" <dprive-chairs@ietf.org>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>, "brian@innovationslab.net" <brian@innovationslab.net>, "tjw.ietf@gmail.com" <tjw.ietf@gmail.com>
Thread-Topic: [dns-privacy] Paul Wouters' Abstain on draft-ietf-dprive-unilateral-probing-12: (with COMMENT)
Thread-Index: AQHZ97wwlNDmJz7RJ0KaxRvZQ+tfELA7pXQB
Date: Thu, 05 Oct 2023 20:30:05 +0000
Message-ID: <PH0PR11MB4966C33CC16502F3D2C83DAEA9CAA@PH0PR11MB4966.namprd11.prod.outlook.com>
References: <169653154469.24088.12325885241211072486@ietfa.amsl.com>
In-Reply-To: <169653154469.24088.12325885241211072486@ietfa.amsl.com>
Accept-Language: fr-BE, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH0PR11MB4966:EE_|BN9PR11MB5370:EE_
x-ms-office365-filtering-correlation-id: f1a2468d-3366-4856-785f-08dbc5e1dc31
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH0PR11MB4966.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(366004)(346002)(396003)(376002)(39860400002)(136003)(230922051799003)(186009)(451199024)(64100799003)(1800799009)(66899024)(316002)(64756008)(2906002)(5660300002)(38100700002)(38070700005)(55016003)(86362001)(33656002)(52536014)(4326008)(122000001)(8676002)(166002)(8936002)(71200400001)(41300700001)(83380400001)(76116006)(54906003)(66556008)(66946007)(66476007)(66446008)(9686003)(110136005)(6506007)(53546011)(7696005)(966005)(478600001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_PH0PR11MB4966C33CC16502F3D2C83DAEA9CAAPH0PR11MB4966namp_"
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4966.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f1a2468d-3366-4856-785f-08dbc5e1dc31
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Oct 2023 20:30:05.5144 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ZYg6kkWyL0PfAC34Xhk4s3IEJNaJz1276W9CF2H8cEZVz6jg35SfUSF5vUOeD55j4wttYJyo88+oft/STk3dKQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN9PR11MB5370
X-Outbound-SMTP-Client: 72.163.7.162, rcdn-opgw-1.cisco.com
X-Outbound-Node: rcdn-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/jTFMbaAvq0CfoAtCVlMdCQ3ix9I>
Subject: Re: [dns-privacy] Paul Wouters' Abstain on draft-ietf-dprive-unilateral-probing-12: (with COMMENT)
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Oct 2023 20:30:20 -0000

Paul, thank you for reconsidering (and explaining) your ballot position.

Authors, do you intend to submit a revise I-D to take into account the IESG comments ?

Thanks to all

-éric

From: dns-privacy <dns-privacy-bounces@ietf.org> on behalf of Paul Wouters via Datatracker <noreply@ietf.org>
Date: Thursday, 5 October 2023 at 20:46
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-dprive-unilateral-probing@ietf.org <draft-ietf-dprive-unilateral-probing@ietf.org>, dprive-chairs@ietf.org <dprive-chairs@ietf.org>, dns-privacy@ietf.org <dns-privacy@ietf.org>, brian@innovationslab.net <brian@innovationslab.net>, tjw.ietf@gmail.com <tjw.ietf@gmail.com>, brian@innovationslab.net <brian@innovationslab.net>
Subject: [dns-privacy] Paul Wouters' Abstain on draft-ietf-dprive-unilateral-probing-12: (with COMMENT)
Paul Wouters has entered the following ballot position for
draft-ietf-dprive-unilateral-probing-12: Abstain

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-dprive-unilateral-probing/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Based on the authors response to my DISCUSS
(https://mailarchive.ietf.org/arch/msg/dns-privacy/mVGvnh3g0Z9O70XeguVNUx59SYk/)
I have updated by ballot to ABSTAIN.

I do not see any use of this draft. In its regular use, the user is still
sending their queries in the clear initially. The draft assumes that after the
initial leak, queries for the same target will be encrypted opportunistically.
I tried pointing out that on most mobile devices, this is not the case due to
frequent network changes and DNS cache purges. Any Operational or Security
Considerations related to this were deemed out of scope. I can only conclude
that no privacy is gained, and that the additional complexity in code is not
worth the effort of implementing.

Additionally, since the draft requires the DNS servers to generate a
certificate, the difference between generating a self-signed certificate, and
using an ACME based certificate that CAN be validated and wouldn't need
unilateral opportunistic security, I see even less reasons to attempt to deploy
this.

As no indications are given back to the user, the draft does the enduser no
harm (other than possibly introducing bugs due to added complexity on the code)
and I see no reason to further block it with a DISCUSS.



_______________________________________________
dns-privacy mailing list
dns-privacy@ietf.org
https://www.ietf.org/mailman/listinfo/dns-privacy