[dns-privacy] FW: New Version Notification for draft-reddy-dprive-bootstrap-dns-server-03.txt
"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Tue, 07 May 2019 15:02 UTC
Return-Path: <TirumaleswarReddy_Konda@mcafee.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07DDA120074 for <dns-privacy@ietfa.amsl.com>; Tue, 7 May 2019 08:02:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.309
X-Spam-Level:
X-Spam-Status: No, score=-4.309 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4WPQQNlTAQpC for <dns-privacy@ietfa.amsl.com>; Tue, 7 May 2019 08:02:50 -0700 (PDT)
Received: from DNVWSMAILOUT1.mcafee.com (dnvwsmailout1.mcafee.com [161.69.31.173]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B0171120019 for <dns-privacy@ietf.org>; Tue, 7 May 2019 08:02:49 -0700 (PDT)
X-NAI-Header: Modified by McAfee Email Gateway (5500)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=s_mcafee; t=1557240972; h=From: To:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:X-MS-Has-Attach:X-MS-TNEF-Correlator: dlp-product:dlp-version:dlp-reaction:authentication-results: x-originating-ip:x-ms-publictraffictype:x-ms-office365-filtering-correlation-id: x-microsoft-antispam:x-ms-traffictypediagnostic: x-ms-exchange-purlcount:x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers:x-forefront-prvs: x-forefront-antispam-report:received-spf:x-ms-exchange-senderadcheck: x-microsoft-antispam-message-info:Content-Type: MIME-Version:X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-originalarrivaltime: X-MS-Exchange-CrossTenant-fromentityheader: X-MS-Exchange-CrossTenant-id:X-MS-Exchange-CrossTenant-mailboxtype: X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-OriginatorOrg:X-NAI-Spam-Flag:X-NAI-Spam-Threshold: X-NAI-Spam-Score:X-NAI-Spam-Version; bh=W Tv4dJ/6l9bOsjJMj1xBCJ9hhjsZ4pyF4ePf5irb3q o=; b=b2xZTU/XTZtUlbR8NlZwcW07V0qjS1VoMB405o+5sP31 bCmbCyIQYAN0Jua5jmF6M6CNZ7zrYsIWQAkntTAqKJHlFYSBCP bXv2f+GGZHFEDt5GChgkZLJXCoaz8dxhFqrYe11ma4GhE+MK9J 7YcQYWYyjyK9VjP71ehOaPUg9/g=
Received: from DNVEXAPP1N06.corpzone.internalzone.com (unknown [10.44.48.90]) by DNVWSMAILOUT1.mcafee.com with smtp (TLS: TLSv1/SSLv3,256bits,ECDHE-RSA-AES256-SHA384) id 5291_313f_46af40cd_1b76_4b57_90f8_ed45551e496e; Tue, 07 May 2019 08:56:12 -0600
Received: from DNVEXAPP1N05.corpzone.internalzone.com (10.44.48.89) by DNVEXAPP1N06.corpzone.internalzone.com (10.44.48.90) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Tue, 7 May 2019 09:02:26 -0600
Received: from DNVO365EDGE2.corpzone.internalzone.com (10.44.176.74) by DNVEXAPP1N05.corpzone.internalzone.com (10.44.48.89) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Tue, 7 May 2019 09:02:26 -0600
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (10.44.176.242) by edge.mcafee.com (10.44.176.74) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Tue, 7 May 2019 09:02:24 -0600
Received: from BYAPR16MB2790.namprd16.prod.outlook.com (20.178.233.91) by BYAPR16MB2952.namprd16.prod.outlook.com (20.178.235.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1856.10; Tue, 7 May 2019 15:02:22 +0000
Received: from BYAPR16MB2790.namprd16.prod.outlook.com ([fe80::8921:8f4d:4710:4379]) by BYAPR16MB2790.namprd16.prod.outlook.com ([fe80::8921:8f4d:4710:4379%2]) with mapi id 15.20.1856.012; Tue, 7 May 2019 15:02:22 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: "dns-privacy@ietf.org" <dns-privacy@ietf.org>
Thread-Topic: New Version Notification for draft-reddy-dprive-bootstrap-dns-server-03.txt
Thread-Index: AQHVBOV3M0xlRIGGEUG/ZPc9qeXS0aZfwU5A
Date: Tue, 07 May 2019 15:02:21 +0000
Message-ID: <BYAPR16MB279081A72B88BB0693208EB5EA310@BYAPR16MB2790.namprd16.prod.outlook.com>
References: <155724102324.21181.9479096864924972082.idtracker@ietfa.amsl.com> <CAFpG3gfkHoRk8Ov1hiwu2npyqKhX9JY9DaFc36RDqimwNnhb2Q@mail.gmail.com>
In-Reply-To: <CAFpG3gfkHoRk8Ov1hiwu2npyqKhX9JY9DaFc36RDqimwNnhb2Q@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.2.0.6
dlp-reaction: no-action
authentication-results: spf=none (sender IP is ) smtp.mailfrom=TirumaleswarReddy_Konda@McAfee.com;
x-originating-ip: [49.37.205.191]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e0fee6e5-3f7e-4086-d994-08d6d2fd01fc
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(2017052603328)(7193020); SRVR:BYAPR16MB2952;
x-ms-traffictypediagnostic: BYAPR16MB2952:
x-ms-exchange-purlcount: 8
x-microsoft-antispam-prvs: <BYAPR16MB2952ADC44108210DACFBF131EA310@BYAPR16MB2952.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 0030839EEE
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(366004)(396003)(39860400002)(346002)(136003)(53754006)(32952001)(199004)(189003)(86362001)(52536014)(446003)(6916009)(606006)(76116006)(76176011)(316002)(7696005)(33656002)(790700001)(6116002)(3846002)(2501003)(11346002)(476003)(186003)(486006)(6306002)(8676002)(7110500001)(81166006)(5660300002)(14454004)(25786009)(80792005)(8936002)(2420400007)(66446008)(15650500001)(53546011)(6506007)(72206003)(966005)(53386004)(74316002)(64756008)(26005)(81156014)(229853002)(66946007)(2351001)(66556008)(5640700003)(53936002)(9686003)(2473003)(71200400001)(66574012)(66476007)(71190400001)(236005)(2906002)(66066001)(99286004)(6436002)(14444005)(256004)(54896002)(73956011)(7736002)(102836004)(478600001)(68736007)(55016002)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR16MB2952; H:BYAPR16MB2790.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: McAfee.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: Yn+gNIt4fB/xzF+E+ytNosYokZWrT0MEVv+EwomikOMaAfNNtVDhkmOmyxyMqoDk+M8nywilyxigeH7xEMivpjrihCAYr4jP3SckWQdxlth0gjlYspOr0q+A9uNRD/tyQJ9wbpyczqGlJQ2TUbCj0sRMjt3GH1jLnijaQRmCYn0Qw9x8evTP7ax3UrnMMCYrmKC3b6hfFBLGu98SRZgXNzqWQynHztV01vuq00kkU+h3CKzr7jhBzM/0FoZ3ptx7voJYudGEhV75xXq1J+iG7gFoYt3KqTZtLwjp/4v6DX+ozIF/A1sq1BUVTplDEwQL9MqJf2EkmbsIZkUjDRAGMWdyyykrR3lgzzTwbuVyhB9HVQUh/pPte7V9wx6F4ezbLCHQOLG94PVWC+GaWkn0oSu5yd+m5DrdF2afSnm5wp4=
Content-Type: multipart/alternative; boundary="_000_BYAPR16MB279081A72B88BB0693208EB5EA310BYAPR16MB2790namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: e0fee6e5-3f7e-4086-d994-08d6d2fd01fc
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 May 2019 15:02:21.9008 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR16MB2952
X-OriginatorOrg: mcafee.com
X-NAI-Spam-Flag: NO
X-NAI-Spam-Threshold: 15
X-NAI-Spam-Score: 0
X-NAI-Spam-Version: 2.3.0.9418 : core <6541> : inlines <7074> : streams <1820841> : uri <2841594>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/vLZApAG4AfNkLRpJcKIkrtY9m64>
Subject: [dns-privacy] FW: New Version Notification for draft-reddy-dprive-bootstrap-dns-server-03.txt
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 May 2019 15:02:53 -0000
Hi all, Based on the feedback received at IETF-104, we have updated the draft https://tools.ietf.org/html/draft-reddy-dprive-bootstrap-dns-server-03. Comments, suggestions, and questions are more than welcome. As a reminder, the draft discusses procedure to automatically bootstrap endpoints to discover and authenticate DNS-over-(D)TLS and DNS-over-HTTPS servers provided by a local network. Major updates are: 1. Removed the use of Explicit Trust Anchor. 2. Updated the PAKE scheme. 3. Added EST server discovery procedure 4. A new privacy certificate extension is defined that identifies the privacy preserving data policy of the DNS server. 5. Configuring authentication domain name (ADN) and associating the DNS server certificate (similar to PKIX-EE(1) defined in DANE). Cheers, -Tiru From: <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> Date: Tue, 7 May 2019 at 20:27 Subject: New Version Notification for draft-reddy-dprive-bootstrap-dns-server-03.txt To: Mohamed Boucadair <mohamed.boucadair@orange.com<mailto:mohamed.boucadair@orange.com>>, Tirumaleswar Reddy <kondtir@gmail.com<mailto:kondtir@gmail.com>>, Dan Wing <dwing-ietf@fuggles.com<mailto:dwing-ietf@fuggles.com>>, Michael C. Richardson <mcr+ietf@sandelman.ca<mailto:mcr%2Bietf@sandelman.ca>> A new version of I-D, draft-reddy-dprive-bootstrap-dns-server-03.txt has been successfully submitted by Tirumaleswar Reddy and posted to the IETF repository. Name: draft-reddy-dprive-bootstrap-dns-server Revision: 03 Title: A Bootstrapping Procedure to Discover and Authenticate DNS-over-(D)TLS and DNS-over-HTTPS Servers Document date: 2019-05-07 Group: Individual Submission Pages: 21 URL: https://www.ietf.org/internet-drafts/draft-reddy-dprive-bootstrap-dns-server-03.txt Status: https://datatracker.ietf.org/doc/draft-reddy-dprive-bootstrap-dns-server/ Htmlized: https://tools.ietf.org/html/draft-reddy-dprive-bootstrap-dns-server-03 Htmlized: https://datatracker.ietf.org/doc/html/draft-reddy-dprive-bootstrap-dns-server Diff: https://www.ietf.org/rfcdiff?url2=draft-reddy-dprive-bootstrap-dns-server-03 Abstract: This document specifies mechanisms to automatically bootstrap endpoints (e.g., hosts, Customer Equipment) to discover and authenticate DNS-over-(D)TLS and DNS-over-HTTPS servers provided by a local network. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>. The IETF Secretariat
- [dns-privacy] FW: New Version Notification for dr… Konda, Tirumaleswar Reddy