Re: [dns-privacy] I-D Action: draft-ietf-dprive-bcp-op-01.txt
Sara Dickinson <sara@sinodun.com> Tue, 18 December 2018 16:30 UTC
Return-Path: <sara@sinodun.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91B2D130F25 for <dns-privacy@ietfa.amsl.com>; Tue, 18 Dec 2018 08:30:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.4
X-Spam-Level:
X-Spam-Status: No, score=-2.4 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sinodun.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p46284FokVmT for <dns-privacy@ietfa.amsl.com>; Tue, 18 Dec 2018 08:30:31 -0800 (PST)
Received: from balrog.mythic-beasts.com (balrog.mythic-beasts.com [IPv6:2a00:1098:0:82:1000:0:2:1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 342F8130F4A for <dns-privacy@ietf.org>; Tue, 18 Dec 2018 08:30:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sinodun.com ; s=balrog-2018; h=To:Date:Subject:From; bh=sJKl8ewmzh0M/qF+w909hO/4iY8lGVh7q/LswZ84i4I=; b=fJD+KPonspB8t4244DwoQZ0DHV ZUyznboGYbtfueKxmpFgOyX8VKc7g1Ib1C2Vea72fgjjL5bQNjiLZaf/MntXB0/HjuyazIKgAvQRW yCwVU3IN/aEle7wAIQRrkStVLhGpVhKoGBxZbkfuaL9RWD4cy7WqygVJOVU17curGURyj2Nd+7Pd6 DQisfw3Lkib2eCCpMZS/wQxgbgfeuxuTPrgd/d9GezxVHiLLLEA0G/6iLzOlKmCM85ML0pmweYZui 2DC5HEazdHZJLaM3LMY0xQTyKNvxpZSj7lLkJTF2s2XPDrVI8znupGqYxRHl98W51hM08JVo99vpm ztHmux+Q==;
Received: from [2a02:8010:6126:0:61ac:4ee0:3380:b4cc] (port=57427) by balrog.mythic-beasts.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from <sara@sinodun.com>) id 1gZIGH-0007sV-Q4 for dns-privacy@ietf.org; Tue, 18 Dec 2018 16:30:29 +0000
From: Sara Dickinson <sara@sinodun.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Tue, 18 Dec 2018 16:30:24 +0000
References: <154515048767.4979.17237875199843234216@ietfa.amsl.com>
To: dns-privacy@ietf.org
In-Reply-To: <154515048767.4979.17237875199843234216@ietfa.amsl.com>
Message-Id: <9AFD11C9-86EE-4420-9A17-0EFE8EB0CB8F@sinodun.com>
X-Mailer: Apple Mail (2.3445.9.1)
X-BlackCat-Spam-Score: 4
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/nTJjX4XX07ebbu-oi3qQsLnubv8>
Subject: Re: [dns-privacy] I-D Action: draft-ietf-dprive-bcp-op-01.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Dec 2018 16:30:33 -0000
Hi All, We’ve just published an update to the draft with the following updates: * Update DoH reference to RFC8484 and add more text on DoH * Split threat descriptions into ones directly referencing RFC6973 and other DNS Privacy threats * Improve threat descriptions throughout * Remove reference to the DNSSEC TLS Chain Extension draft until new version submitted. * Clarify use of whitelisting for ECS * Re-structure the DPPPS, add Result filtering section. * Remove the direct inclusion of privacy policy comparison, now just reference dnsprivacy.org and an example of such work. * Add an appendix briefly discussing DNSSEC * Many minor editorial fixes * Update affiliation of 1 author At the mic line at the last IETF meeting where this was discussed (IETF 102) there was support for both splitting this document up into 2 or more documents and also keeping everything in a single document. For ease of review at this point we have not changed the structure but would appreciate comments about this on the list. Best regards Sara. > On 18 Dec 2018, at 16:28, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the DNS PRIVate Exchange WG of the IETF. > > Title : Recommendations for DNS Privacy Service Operators > Authors : Sara Dickinson > Benno J. Overeinder > Roland M. van Rijswijk-Deij > Allison Mankin > Filename : draft-ietf-dprive-bcp-op-01.txt > Pages : 33 > Date : 2018-12-18 > > Abstract: > This document presents operational, policy and security > considerations for DNS operators who choose to offer DNS Privacy > services. With these recommendations, the operator can make > deliberate decisions regarding which services to provide, and how the > decisions and alternatives impact the privacy of users. > > This document also presents a framework to assist writers of DNS > Privacy Policy and Practices Statements (analogous to DNS Security > Extensions (DNSSEC) Policies and DNSSEC Practice Statements described > in [RFC6841]). > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-dprive-bcp-op/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-dprive-bcp-op-01 > https://datatracker.ietf.org/doc/html/draft-ietf-dprive-bcp-op-01 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-dprive-bcp-op-01 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > dns-privacy mailing list > dns-privacy@ietf.org > https://www.ietf.org/mailman/listinfo/dns-privacy
- [dns-privacy] I-D Action: draft-ietf-dprive-bcp-o… internet-drafts
- Re: [dns-privacy] I-D Action: draft-ietf-dprive-b… Sara Dickinson
- Re: [dns-privacy] I-D Action: draft-ietf-dprive-b… Bob Harold