Re: [dns-privacy] Call For Adoption: draft-wing-dprive-dnsodtls
Warren Kumari <warren@kumari.net> Wed, 03 June 2015 19:14 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 992E01B29FE for <dns-privacy@ietfa.amsl.com>; Wed, 3 Jun 2015 12:14:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.077
X-Spam-Level:
X-Spam-Status: No, score=-1.077 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_54=0.6, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J-ELMEdLCmAh for <dns-privacy@ietfa.amsl.com>; Wed, 3 Jun 2015 12:14:36 -0700 (PDT)
Received: from mail-oi0-f51.google.com (mail-oi0-f51.google.com [209.85.218.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DA4511B29FF for <dns-privacy@ietf.org>; Wed, 3 Jun 2015 12:14:35 -0700 (PDT)
Received: by oihb142 with SMTP id b142so14954039oih.3 for <dns-privacy@ietf.org>; Wed, 03 Jun 2015 12:14:35 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-type; bh=uWIJfNfqLanLTVF+flCKe3jRA8mWFy/OlOvaQQ0xlr4=; b=ECfIN9nM+JieaMWRwLiJu3LFgWT8aJk8eGCHNzECXTF72baWIX2SVUNZ/EZnbU++DX eHyj8+CMeRvZKnHwmSwlL4hn2Janh+HCaiNdrf8OX9OZgKhTKA492/wGXlcv+Xd42x2l L9mqTXAHQ7xpQkRoh7u2Xa6vfWAJYBSZEbDYw5lDhnfYKbH50fE8w3bfKC3kJokI01j/ 6b1cyC0ucmAps+o0u76noONIpAtO1y8odw/DC2hh39+3afOl+zXkajPwwknEbHywEVPQ gK7RrpZuXIQbdTlngn6BeryIVzbobA06/5D9Y1ola4/BOdmd6XsEboTcSQHDWsJk6BP8 4Deg==
X-Gm-Message-State: ALoCoQlr9/asM2XQ6QzIQgoYyRMtcYHBlaunB4CwUFaV0GVT0dzJIkhRe/wovaMf5Glc6OmJP850
X-Received: by 10.60.56.97 with SMTP id z1mr24774338oep.59.1433358875254; Wed, 03 Jun 2015 12:14:35 -0700 (PDT)
MIME-Version: 1.0
References: <55660ecf24837fbc327fc70044d29186.jorgen@netclient.no>
In-Reply-To: <55660ecf24837fbc327fc70044d29186.jorgen@netclient.no>
From: Warren Kumari <warren@kumari.net>
Date: Wed, 03 Jun 2015 19:14:24 +0000
Message-ID: <CAHw9_iLAegKwSnvhMhyeQARR=Ufv9T1_UB00049mp9EaqigFPQ@mail.gmail.com>
To: Jørgen Hovland <jorgen@netclient.no>, Phillip Hallam-Baker <ietf@hallambaker.com>
Content-Type: multipart/alternative; boundary="001a11c204fa9877d20517a1de76"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dns-privacy/kpwnEwkjlbm8Gz42gBOTD3wogho>
Cc: dns-privacy <dns-privacy@ietf.org>, Guangqing Deng <dengguangqing@cnnic.cn>, Paul Hoffman <paul.hoffman@vpnc.org>
Subject: Re: [dns-privacy] Call For Adoption: draft-wing-dprive-dnsodtls
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jun 2015 19:14:38 -0000
Thanks everyone who responded. We see there being support for adoption. We would also like to appoint the current set of authors as authors of the adopted document (assuming they are willing to continue authoring) - please resubmit as draft-ietf-dprive-dnsodtls (or similar). Shane raises an interesting point about it combining a mix of idea / tones - it is possible that this may end up being split into a few more focused documents. Also (because it looks like we forgot to include this when starting the CfA): Dear DPRIVE WG participants, We would like to check whether there are claims of Intellectual Property Rights (IPR) on the document that need to be disclosed. Are you personally aware of any IPR that applies to this document? If so, has this IPR been disclosed in compliance with IETF IPR rules? (See RFCs 3979, 4879, 3669, and 5378 for more details.) If you are a document author or listed contributor on this document, please reply to this email message regardless of whether or not you are personally aware of any relevant IPR. We might not be able to advance this document to the next stage until we have received a reply from each author and listed contributor. If you are on the DPRIVE WG email list but are not an author or listed contributor for this document, you are reminded of your opportunity for a voluntary IPR disclosure under BCP 79. Please do not reply unless you want to make such a voluntary disclosure. Online tools for filing IPR disclosures can be found at <http://www.ietf.org/ipr/file-disclosure>. Thanks, W (as DRPIVE WG co-chair) On Wed, May 27, 2015 at 2:37 PM Jørgen Hovland <jorgen@netclient.no> wrote: > > Any chance you could add in a straight UDP round trip measurement so we > have a benchmark to compare like with like? > > 8,9955 average > > 8.966 ms > 9.020 ms > 9.007 ms > 8.984 ms > 9.011 ms > 8.985 ms > > using traceroute with also 18 byte data (20 ip + 8 udp + 18 data) > > For the crypto/openssl results, the server had CPU AES hardware support > (E5-2690 v2) while the client had not (AMD 64 X2 Dual Core 5000+). > > > > > At 18:06 27/05/2015 (UTC), Phillip Hallam-Baker wrote: > > Any chance you could add in a straight UDP round trip measurement so we > have a benchmark to compare like with like? > > On Tue, May 26, 2015 at 3:27 PM, Jørgen Hovland <jorgen@netclient.no > <http://mail?p=compose&to=jorgen@netclient.no>> wrote: > >> At 03:04 26/05/2015 (UTC), Paul Hoffman wrote: >> > Is the latency for an established TLS connection any worse than for a >> DTLS connection? It would be good to see numbers if this is the case. >> >> I did a test. The difference seems to be so small that it doesn't matter. >> >> However, >> DTLS handshake seems to be a bit slower than TLS handshake (not including >> TCP connect or DTLS cookie code). >> Additionally, if I use the openssl CLI as DTLS server instead of my code, >> the DTLS handshake increases to around 34ms. >> TCP connect takes around 9.1ms between my test-servers. >> >> If you assume that the openssl CLI correctly implements a normal DTLS >> handshake while my code doesn't (due to no cookie code), TLS is faster than >> DTLS by around 2ms (8.4%) when a full connect/handshake with one write+read >> is done. >> >> >> Server/client 500km apart from each other with simple echo server/round >> trip test: >> >> TCP data read: 18, time spent write+read: 9.16038ms. Time spent TLS >> handshake 23.3289ms. >> TCP data read: 18, time spent write+read: 9.07797ms. Time spent TLS >> handshake 21.4217ms. >> TCP data read: 18, time spent write+read: 9.10591ms. Time spent TLS >> handshake 21. 1549ms. >> TCP data read: 18, time spent write+read: 9.05283ms. Time spent TLS >> handshake 21.1289ms. >> TCP data read: 18, time spent write+read: 9.02824ms. Time spent TLS >> handshake 21.2273ms. >> TCP data read: 18, time spent write+read: 9.06903ms. Time spent TLS >> handshake 21.1971ms. >> TCP data read: 18, time spent write+read: 9.07378ms. Time spent TLS >> handshake 21.3058ms. >> >> UDP data read: 18, time spent write+read: 9.02713ms. Time spent DTLS >> handshake: 23.1482 ms. >> UDP data read: 18, time spent write+read: 9.06344ms. Time spent DTLS >> handshake: 22.3601 ms. >> UDP data read: 18, time spent write+read: 8.97628ms. Time spent DTLS >> handshake: 23.1001 ms. >> UDP data read: 18, time spent write+read: 9.14725ms. Time spent DTLS >> handshake: 22.7562 ms. >> UDP data read: 18, time spent write+read: 9.0721ms. Time spent DTLS >> handshake: 22.0508 ms. >> UDP data read: 18, time spent write+read: 9.34728ms. Time spent DTLS >> handshake: 21.7002 ms. >> >> (disclaimer: I assume my numbers are correct) >> >> >> At 03:04 26/05/2015 (UTC), Paul Hoffman wrote: >> >> On May 25, 2015, at 6:54 PM, Guangqing Deng <dengguangqing@cnnic.cn >> <http://mail?p=compose&to=dengguangqing@cnnic.cn>> wrote: >> > Resolution latency is very crucial for DNS system and the latency of >> DNS-over-DTLS is relatively low compared with DNS-over-TLS. >> >> Is the latency for an established TLS connection any worse than for a >> DTLS connection? It would be good to see numbers if this is the case. >> >> --Paul Hoffman >> _______________________________________________ >> dns-privacy mailing list >> dns-privacy@ietf.org <http://mail?p=compose&to=dns-privacy@ietf.org> >> https://www.ietf.org/mailman/listinfo/dns-privacy >> >> >> _______________________________________________ >> dns-privacy mailing list >> dns-privacy@ietf.org <http://mail?p=compose&to=dns-privacy@ietf.org> >> https://www.ietf.org/mailman/listinfo/dns-privacy >> >> > _______________________________________________ > dns-privacy mailing list > dns-privacy@ietf.org > https://www.ietf.org/mailman/listinfo/dns-privacy >
- [dns-privacy] Call For Adoption: draft-wing-dpriv… Tim Wicinski
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Bob Harold
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Simon Josefsson
- Re: [dns-privacy] Call For Adoption: draft-wing-d… 🔓Dan Wing
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Daniel Kahn Gillmor
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Guangqing Deng
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Christian Huitema
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Paul Hoffman
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Guangqing Deng
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Tirumaleswar Reddy (tireddy)
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Tirumaleswar Reddy (tireddy)
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Jørgen Hovland
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Shane Kerr
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Phillip Hallam-Baker
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Jørgen Hovland
- Re: [dns-privacy] Call For Adoption: draft-wing-d… Warren Kumari