[dns-privacy] DEADLINE EXTENSION until January 18: DNS Privacy Workshop
Allison Mankin <allison.mankin@gmail.com> Wed, 11 January 2017 21:38 UTC
Return-Path: <allison.mankin@gmail.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC1091295B6 for <dns-privacy@ietfa.amsl.com>; Wed, 11 Jan 2017 13:38:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oFEmuwl8Ftwp for <dns-privacy@ietfa.amsl.com>; Wed, 11 Jan 2017 13:38:06 -0800 (PST)
Received: from mail-vk0-x22a.google.com (mail-vk0-x22a.google.com [IPv6:2607:f8b0:400c:c05::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75F6D129579 for <dns-privacy@ietf.org>; Wed, 11 Jan 2017 13:38:06 -0800 (PST)
Received: by mail-vk0-x22a.google.com with SMTP id 137so654360vkl.0 for <dns-privacy@ietf.org>; Wed, 11 Jan 2017 13:38:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=KF3Aort7gQb3vWOatSCMJ/wfrxf2PVUqxJN+h9z4OC8=; b=cF9IHa4tN/+U9SgEeD+DalnY2yMwN8uykBa+/FRHmhGNPYqydqZ5ncxEVkfFrGbwp0 22ASB/s0juRp/fL47lWZ+gVDJk6qIV64a8N0l9Ofj1BXSJY1w2JMARc07lSwdxhyg0vp 4dDj9J5ipirLaR113wkBaDD9vf1+vxZBIg3mbQA+Kqd5MMl8bXz1Vrxw74gvmc37teqY 5D1ciHX33zkJ3HYJj0bb7o5mWxfi57uXSG+5fJbj5PtBqztigH5A8dbVekRGehuSMqXR cyTKcHVzU+R6qRp5OQrtFCLhXidcIkvg9xrqn3BDmfKy05ez8ti17DOABaFmlnW/S4Oa CZhw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=KF3Aort7gQb3vWOatSCMJ/wfrxf2PVUqxJN+h9z4OC8=; b=VGVmWWut0bgoynfoTj4LGKhP0SyivB/wF547KjsNiwinELiIQVSCzNvUhdthX8RjQc 5OozX7Q3yfsLecdaevKNo4kcDeOwK1vDoGI5n/EDhMQkpZ7Te4qn0mISWodKoEUPaj8q XOPtbgc8xamhJr9KzefQiIODc9nRXdg19wZnd17wJc80xQ/Wi2QSO9plbzuBGJyf8BnM fwJN2PTxTHkfDrXHl258OZ1J5mPo1k9IrxPeuNEoY3uifTnzSP2mfeFfpvHbdGJonS44 p+3mF2UtIbOwEb36HCnD2aNLl9ra3r/Ai/ssllPxM2gwoVzEuJRoV1M5Zjez1mXuJIWk C7Sg==
X-Gm-Message-State: AIkVDXKjbxa8fVhoBmXLLNbz8F90cKikyFIJjKHgHQZ0y6JquzqAAXfrTNl1s6X0AgCBvTPZdoBvs8YY0E3ixw==
X-Received: by 10.31.14.206 with SMTP id 197mr5239363vko.38.1484170685450; Wed, 11 Jan 2017 13:38:05 -0800 (PST)
MIME-Version: 1.0
Received: by 10.103.138.6 with HTTP; Wed, 11 Jan 2017 13:38:04 -0800 (PST)
From: Allison Mankin <allison.mankin@gmail.com>
Date: Wed, 11 Jan 2017 16:38:04 -0500
Message-ID: <CAP8yD=vUKm-pgsAwRJiW_4xXEzr_VjkiY_hefCXo0W-Dd_pJeQ@mail.gmail.com>
To: dns-privacy@ietf.org
Content-Type: multipart/alternative; boundary="001a11457f287e10020545d86a8a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/mcsREwe4g9NHjlo-y9Ve_06kinc>
Subject: [dns-privacy] DEADLINE EXTENSION until January 18: DNS Privacy Workshop
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Jan 2017 21:38:09 -0000
[Apologies for possible multiple copies] We have extended the submission deadline for the NDSS DNS Privacy Workshop to Wednesday, January 18 because of the intervening holidays for many interested people. Please contact us (Sara and Allison) if you have questions. Note that the formats are flexed a bit as well: page lengths and format are flexible now and we are also willing to receive draft presentations as long as they have an abstract early in the deck. The goal of the workshop is interchange and advancing the state of play for DNS privacy and its adjacent technologies. The call for papers is here: DPRIV17 <https://www.internetsociety.org/events/ndss-symposium/ndss-symposium-2017/dns-privacy-workshop-2017-call-papers>. The deadline on the web page at NDSS hasn't been changed yet, but the submission system is set with the new deadline. Elevator pitch: DNS queries and domain names are metadata and there are many new directions (and open questions) for mitigating privacy issues for them. Location and Important dates: Workshop Location: San Diego, CA, USA Workshop date: 2017-02-26 (co-located with NDSS 2017) Submissions: 2017-01-18 anywhere-on-earth Final date for notifications and invitations to present at the workshop: 2017-02-03 Submissions may be new papers, papers already published, Short Papers, or Position Papers. Also, please contact the TPC chairs if you want to suggest a panel. Allison and Sara allison.mankin@gmail.com sara@sinodun.com ------------ *Workshop on DNS Privacy DPRIV17 (#NoMoreCowbell)* BackgroundDNS Privacy has been a growing concern of the IETF and others in the Internet engineering community for the last few years. Almost every activity on the Internet starts with a DNS query (and often several). - Those queries can reveal not only what websites an individual visits but also metadata about other services such as the domains of email contacts or chat services. - Whilst the data in the DNS is public, individual DNS transactions made by an end user *should not* be public. - Today, however DNS queries are sent in *clear text* (using UDP or TCP) which means passive eavesdroppers can observe all the DNS lookups performed. - The DNS is a globally distributed system that crosses international boundaries and often uses servers in many different countries in order to provide resilience. - It is well known that the NSA used the MORECOWBELL tool to perform mass surveillance of DNS traffic, and other surveillance techniques involving DNS almost certainly are in play today. - Some ISPs embed user information (e.g. a user ID or MAC address) within DNS queries that go to the ISP’s resolver in order to provide services such as Parental Filtering. This allows for fingerprinting of individual users. - Some CDNs embed user information (e.g. client subnets) in queries from resolvers to authoritative servers (to geo-locate end users). This allows for correlation of queries to particular subnets. - Some ISPs log DNS queries at the resolver and share this information with third-parties in ways not known or obvious to end users. The IETF's DPRIVE (*D*NS *PRIV*ate *E*xchange) Working Group has taken initial protocol steps to address these concerns (with much of the early work focussing on the stub to resolver problem), publishing DNS Privacy Considerations (RFC 7626), Specification for DNS over Transport Layer Security (RFC 7858), and The EDNS(0) Padding Option (RFC 7830), and DNS Query Name Minimisation to Improve Privacy (RFC 7816). However because of the great diversity of the DNS ecosystem, and the pervasive role of DNS and domain names in Internet applications and security, much is not fully understood or resolved. The goal of this workshop is to bring together privacy and Internet researchers with a diversity of backgrounds and views, to identify promising long-term mitigations of the broad space of DNS privacy risks.
- [dns-privacy] DEADLINE EXTENSION until January 18… Allison Mankin