IETF Logo Mail Archive

[dns-privacy] AD review of draft-ietf-dprive-unilateral-probing-09

"Eric Vyncke (evyncke)" <evyncke@cisco.com> Mon, 17 July 2023 12:06 UTC

Return-Path: <evyncke@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92A76C151533 for <dns-privacy@ietfa.amsl.com>; Mon, 17 Jul 2023 05:06:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -11.896
X-Spam-Level:
X-Spam-Status: No, score=-11.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b="Egmsn4aL"; dkim=pass (1024-bit key) header.d=cisco.com header.b="CWqseuyG"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gpXJYkJLdD5Q for <dns-privacy@ietfa.amsl.com>; Mon, 17 Jul 2023 05:06:20 -0700 (PDT)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E9633C151535 for <dns-privacy@ietf.org>; Mon, 17 Jul 2023 05:06:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6640; q=dns/txt; s=iport; t=1689595579; x=1690805179; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=SAlYPRt1nvk6DYnlOzT7ASFf25ieGMEoUhAy4PwA2r4=; b=Egmsn4aLhzdruIExMwT25HRC70Jpmo0vaGhrVB9qj4RKe5WlZetAMvxl XTnIOz7jvf6Ir2p1oA0SDkUxp8Swqqlp5GglR8qxlQ8wPVT5UhSP7Pzpv j263cdHLss5631jgwdLG+qGt8JbFoHkulXZRAqlxhTFZc3+WoJ3HJeRBn E=;
X-IPAS-Result: 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
IronPort-PHdr: A9a23:VUGs7x+4rmji3f9uWO7oyV9kXcBvk7zwOghQ7YIolPcXNK+i5J/le kfY4KYlgFzIWNDD4ulfw6rNsq/mUHAd+5vJrn0YcZJNWhNEwcUblgAtGoiEXGXwLeXhaGoxG 8ERHER98SSDOFNOUN37e0WUp3Sz6TAIHRCqOBRkIO/2F6bZjt+80Ka5/JiAKwlNjSC2NKt7N w7+7R2Er9Qfm4JkNqc3x1PFo2AdfeNQyCIgKQeYng334YG7+5sLzg==
IronPort-Data: A9a23:oAUjha8AMHLVMQZ5UQTNDrUDhX6TJUtcMsCJ2f8bNWPcYEJGY0x3z TMZDGzUaf3bYGCjL99/b4+08UgAuMTXytM1TAZt/H1EQiMRo6IpJzg2wmQcns+2BpeeJK6yx 5xGMrEsFOhtEjmE4E3F3oHJ9RGQ74nQLlbHILCCYnkZqTNMEn970ko8wrFh2+aEvPDga++zk YKqyyHgEAfNNw5cagr4PIra9XuDFNyr0N8plgRWicJj5TcypFFJZH4rHpxdGlOjKmVi8kFWc M6YpF2x1juxEx7AkbpJmJ6jGqEBaua60QRjFhO6VoD66iWuqBDe3Y58Jb0iMh9OuwyLsMBsl dJ9rp23RAoQa/ikdOQ1C3G0Egl3OalAvbTAO3X64IqYzlbNdD3nxPAG4EMeZNJDvL0pRzgVs 6VCeVjhbTjb7w6y6L+lW+9nhckLJ8jwN4RZsXZlpd3cJa98Ec+aGPmbvbe02h8Aq+d+QeTCS fEiZGRfUDaReBJGFg8IXcdWcOCA3ymjLGIwREiujaYx+C3L1g1v2bP8GNvYZtLMQt9a9nt0v UrP+2D/RxodLtHamHyO82mnganEmiaTtJ8u+KOQse8tvgbL31wqCjIGSAa8keK4jUOzYocKQ 6ALwRYGoa83/U2ta9DyWRykvXKJ1iLwvfINSYXWDynQlMLpDxal6nssFWUZOYZ23CMibXl7i AHVwo+B6SlH7eX9dJ6LyluDQdpe0wA8KWsPY0fopiNavoG7+unfYv8zJ+uP/Ya8itnzXDr32 T3P/W41hq4YiogA0KDTEbH7b9CE+MWhou0dv1q/soeZAuVRP9DNi2uAsgmz0Bq4BNzFJmRtR VBd8yRk0MgADIuWiAuGS/gXEbei6p6taWOM0AM0RcN6qGT2phZPmLy8Bhkjei+F1e5aIVfUj LP74mu9GbcKZiLxNP8rC25PI5RzlsAM6ugJptiNPoYRPfCdhSeM/TplYgaLznvxnU03+ZzTy r/FGftA+U0yUPw9pBLvHr91+eZylkgWmziJLbillEvP7FZrTCPPIVvzGAHQPrlRAWLtiFi9z uuzwOPRkUoCD7KlO3O/HEx6BQliEEXXzKve8qR/XuWCOQFhXmomDpfsLXkJIeSJQ4w9ej/0w 0yA
IronPort-HdrOrdr: A9a23:0eop66jnKDBhHXtGyknaYn0F7nBQX2l13DAbv31ZSRFFG/FwyP rOoB1L73HJYWgqN03IwerwQpVoIUm3yXbsibNhd4tKLzOWxVdAS7sSoLcKogeQUBEWk9Q86U 4OSdkHNDSdNykesS+Y2nj1Lz9D+qj9zEnAv463pBsdLnAJV0gK1XYfNu/vKDwOeOAwP+teKH Pz3Lsim9OnQxkqR/X+IkNAc/nIptXNmp6jSwUBHQQb5A6Hii7twKLmEjCDty1uHQ9n8PMHyy zoggb57qKsv7WQ0RnHzVLe6JxQhZ/I1sZDPsqRkcIYQw+cyzpAJb4RG4FqjgpF4t1H22xa1e UkZC1Qe/ib3kmhPV1dZyGdnDUIngxerUMKgmXo/UcL6faJOw7STfAxyr6wtnDimhIdVBYW6t MT44rS3aAncy/ojWDz4cPFWAptkVfxqX0+kfQLh3gaSocGbqRNxLZvin+9Pa1waB4S0rpXZ9 VGHYXZ/rJbYFmaZ3fWsi1mx8GtRG06GlODTlIZssKY3jBKlDQhpnFojPA3jzMF7tYwWpNE7+ PLPuBhk6xPVNYfaeZ4CP0aScW6B2TRSVbHMX6UI17gCKYbUki94qLf8fEw/qWnaZYIxJw9lN DIV05Zr3c7fwb0BciHzPRwg2XwqaWGLEbQI+1llutEU+fHNcvW2AW4OSATr/c=
X-Talos-CUID: 9a23:HjIWkG1DEaqUlcYxOeYhILxfXdFiTCaF1UfpIWCoFDtueKaUTlKdwfYx
X-Talos-MUID: 9a23:phDm9gQbvI0rlqSXRXTcqRZSaNV0zZ+VBR49rbdXoMaNGXRvbmI=
X-IronPort-Anti-Spam-Filtered: true
Received: from alln-core-9.cisco.com ([173.36.13.129]) by alln-iport-7.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 17 Jul 2023 12:06:18 +0000
Received: from alln-opgw-1.cisco.com (alln-opgw-1.cisco.com [173.37.147.229]) by alln-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 36HC6IP0013234 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <dns-privacy@ietf.org>; Mon, 17 Jul 2023 12:06:18 GMT
Authentication-Results: alln-opgw-1.cisco.com; dkim=pass (signature verified) header.i=@cisco.com; spf=Pass smtp.mailfrom=evyncke@cisco.com; dmarc=pass (p=quarantine dis=none) d=cisco.com
X-IronPort-AV: E=Sophos;i="6.01,211,1684800000"; d="scan'208";a="4320847"
Received: from mail-dm6nam10lp2102.outbound.protection.outlook.com (HELO NAM10-DM6-obe.outbound.protection.outlook.com) ([104.47.58.102]) by alln-opgw-1.cisco.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 17 Jul 2023 12:06:18 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Ucdu50DIDM8ayYis/R8QTlfz4EhlFLjN0iJsZEfhZbFHsU5fIhD3KTHeFaDvTcsZnVVhYib/2OpDEZSU3ZQvfab2cmsTEmeEAgu7KmIDqIILLEIf1FDxFMLx585JHJAZ49IH2HvgEUhulYk/NtPGVwwqce5aXnKviXbTkfxza8bKz6kNoKrHqKOjY1P5kuHzqlryQaIw2NX1QrHyJlpB8oQWweDeV6QUXjm8dcWh3wMAT4aqWFU/vVeXOgJC5qUzLGRMai782WyOA8bq81pMDao7ABaPaE2k/W7dwHqrY3C9fw+FDHGhyBB9E3AD7NJ6/FHKKEc1408YkSMZU4AWNA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=SAlYPRt1nvk6DYnlOzT7ASFf25ieGMEoUhAy4PwA2r4=; b=AxPxLuavfwokFX/I+m56j+Cq4bijDzUPdfcgcvaVbJ2aIMpzH4WjQGOpcFR2l8O3RHjWvuuY1ZKhk0DnldBzrCKRe8dUNxYCcz0GaBAdIDes6j6ECfjY98Z3KiQdfkV5Sv/8h2LerDDNnToGC9gBoZznUFSVwSZhmtzX2TN0qkk5IGsoq3LTCaFiqyFfNaaBaC+s2MFnAClSp/eDGlYBAnQgH1xLzq3g/e7giI0xGOkA29o5wcshgVlDIR69WymmB8Xj0RjdG5eHXJySwstZVxLtwI7bQhAc1gDFeQy13FdQQkrWQCd0zDuhuAhR+qGj8nieaAFksQ+e7V+Pq08nog==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SAlYPRt1nvk6DYnlOzT7ASFf25ieGMEoUhAy4PwA2r4=; b=CWqseuyGmbIp3Qxt1zsQd8Tsl0mMn5CWFiCT1cwlHO/hqXi+a/NauEqnpqstQ+SofDhw9qBwitRbJX/PTDaHnxjFDVlgRrs+ai4krEBGODJP8bZGjPAg5arvWNaujsaRg4JJ5/gsY2C1m4mdnKoDr1ZlTMf1GhycN/o6pBc7++Y=
Received: from SA2PR11MB4972.namprd11.prod.outlook.com (2603:10b6:806:fb::21) by PH7PR11MB7550.namprd11.prod.outlook.com (2603:10b6:510:27d::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6588.32; Mon, 17 Jul 2023 12:06:16 +0000
Received: from SA2PR11MB4972.namprd11.prod.outlook.com ([fe80::8ef0:32de:3a98:76c0]) by SA2PR11MB4972.namprd11.prod.outlook.com ([fe80::8ef0:32de:3a98:76c0%4]) with mapi id 15.20.6588.031; Mon, 17 Jul 2023 12:06:16 +0000
From: "Eric Vyncke (evyncke)" <evyncke@cisco.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: AD review of draft-ietf-dprive-unilateral-probing-09
Thread-Index: AQHZuKcWOROzZeeAlU+h5/kTGbtASA==
Date: Mon, 17 Jul 2023 12:06:16 +0000
Message-ID: <C0F3EA5F-96EF-4777-94E3-3B3913134483@cisco.com>
Accept-Language: fr-BE, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.75.23070901
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SA2PR11MB4972:EE_|PH7PR11MB7550:EE_
x-ms-office365-filtering-correlation-id: f372ec70-5fcc-4bee-da22-08db86be394d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SA2PR11MB4972.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(39860400002)(366004)(346002)(376002)(396003)(136003)(451199021)(122000001)(38100700002)(6486002)(478600001)(41300700001)(5660300002)(71200400001)(8676002)(8936002)(66476007)(6916009)(66946007)(66446008)(64756008)(91956017)(76116006)(316002)(66556008)(2616005)(66574015)(186003)(6512007)(83380400001)(6506007)(86362001)(36756003)(33656002)(38070700005)(2906002)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <0FB3AF4CF3AC0642A9944F0B3E4186CB@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: cisco.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SA2PR11MB4972.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f372ec70-5fcc-4bee-da22-08db86be394d
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jul 2023 12:06:16.6290 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ojM1PWb9Vo+I7vgBHqXv+tMN8OtC6aVG2VAdF49GTlZpTQX9eZlOIUloON3mjWBMQDH/Uc67XGXdeoA/hb24lQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH7PR11MB7550
X-Outbound-SMTP-Client: 173.37.147.229, alln-opgw-1.cisco.com
X-Outbound-Node: alln-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/tET9zxvf8uFUy5fS-IePUhgSiVQ>
Subject: [dns-privacy] AD review of draft-ietf-dprive-unilateral-probing-09
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jul 2023 12:06:24 -0000

Dear authors, dear DPRIVE WG,

Thank you for the hard work done on this document, it was not an easy ride, but the WG has reached consensus, and the change of intended status also fits the charter.

As usual, I have done an AD review of draft-ietf-dprive-unilateral-probing-09 before going forward with the publication process (i.e., the IETF Last Call). Please find below some points, I expect a reply or an action on all of them (except when noted) before the requesting the IETF Last Call.

Regards and even if DPRIVE does not meet in San Francisco for IETF-117, I will be there, so feel free to have a chat

-éric

# Shepherd's write-ip

The shepherd's write-up states "the WG would like to ensure that this list remains in the document once it is published as an RFC" but the appendix A states "RFC Editor: please remove this section before publication". I.e., the shepherd's write-up and the I-D MUST be coherent ;-)

# Section 1

Section 1 mentions "Internet ecosystem" while the abstract is about "DNS ecosystem", perhaps worth using the same terms ?

Is it about ` provide guidance to implementers` or more about ` provide guidance to DNS operators` or both ?

# Section 1.1

I am always uneasy with the use of BCP14 normative language outside of a standard track or BCP document.

# Section 1.2

Is 'deployment' required in `capable of opportunistic probing deployment` ?

` DoQ, DoT, and DoH collectively` but section 2.2 states later ` This document does not pursue the use of DoH in this context`

# Section 2.1

Should there be a more suitable wording for an experimental draft than ` This protocol aims`?

In the same vein, but this time it MUST be reworded ` This protocol specifies the use of DoT and DoQ`

# Section 3

This was probably discussed over the mailing list, but must DoT & DoQ replies be also identical to Do53 replies ? The current text is a little underspecified.

Please expand ALPN at first use.

# Section 3.1

` within the span of a few seconds` is rather vague. Should this be rephrased in "less than 30 seconds" (or whatever) ? Else, I fear some comments during the IESG review ;-)

# Section 3.2

In ` The simplest deployment would simply provide a self-issued, regularly-updated X.509 certificate` is the intent to use short-lived certificates ? Or more to state "valid certificate" ? The text would benefit from clarity.

# Sections 3.4, 3.5, and 3.6

Those 3 sections introduce some context explained later in the section 4.6. Suggest adding a forward internal reference to those sub-section on 4.6 (else it looks like repetition).

# Section 3.5

Expect some comments during the IESG review if the SHOULDs do not have some wording about when the SHOULDs does not apply.

# Section 4.1

I am not a native English speaker, but I find ` the recently-good encrypted transport` weird... Is it good English ?

` falls back to Do53 for that tuple` but this won't be a tuple anymore as it is merely clientIP, serverIP.

# Section 4.2

` or worse, filters the incoming traffic and does not even respond with an ICMP port closed message` I would assume that some authoritative servers would apply rathe limiting to ICMP to prevent a reflection attack.

Is there any chance to also use an IPv6 example ? 

# Section 4.4

Unsure whether the last paragraph has any value... ` a recursive resolver implementing these strategies SHOULD also accept queries from its clients over some encrypted transport (current common transports are DoH or DoT).
` Also, is DoH in scope for the communication to its client ?

# Section 4.5

This section is somehow mixing up text where the ClientIP is required in the tuple and sometimes not. The section 4.5.1 clarifies the text of course but comes a little late for the reader. Should the text in 4.5.1 be moved to the beginning of section 4.5 ?

As for section 4.2, an IPv6 example would be more modern.

# Section 4.6

It is a little unclear whether it is the client or server in ` using IP address X`.

# Section 4.6.3.3

The reference to ECH should be normative as there is no way to implement the RECOMMENDED action of this document w/o the ECH draft. This is of course annoying as the ECH I-D seems to be lingering and this would cause a delayed cluster.

# Section 4.6.10

Only one prioritization scheme in this section while there were two in section 3.4

# Appendix B

"DoE" is not expanded (even if guessable)

Are the measurements to be done on the recursive resolver and/or the authoritative server ?

# NITS

AFAIK, 'e.g.' is always surrounded by commas. And "instead" and "for example" are also followed by a comma.

In US-English, I think it is "signaling" with a single 'el' 

# Section 4.6.12 

s/ RTT (round trip time)/ Round Trip Time (RTT)/

v2.23.0 | Report a Bug | By Email