IETF Logo Mail Archive

Re: [dns-privacy] Robert Wilton's No Objection on draft-ietf-dprive-xfr-over-tls-11: (with COMMENT)

"Rob Wilton (rwilton)" <rwilton@cisco.com> Thu, 06 May 2021 13:15 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA6F23A21E5; Thu, 6 May 2021 06:15:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.618
X-Spam-Level:
X-Spam-Status: No, score=-9.618 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=aU8ecIfX; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=0DskJLT1
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aOiq0woxKVGv; Thu, 6 May 2021 06:15:09 -0700 (PDT)
Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE0EE3A21E3; Thu, 6 May 2021 06:15:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4234; q=dns/txt; s=iport; t=1620306909; x=1621516509; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=/4dk8zv6NXgf6gHPHChMiy7hAtV5vY7QwIaGPrZHhpU=; b=aU8ecIfXkB74Fn0+fikrnyB9s/hW4/WT+BPdLdfmPyCMMW6TafzA6qUh PI0fWOuIny5MlRo3n4TjhFwtFU6DE9kEeGhJv0LikL14jkFUrda2oz80W 3ZdBuDIHygBT5MddE2guEEbe3dj2LaYLccd8g/49sMnzUK7LwoVQx2Qw+ Y=;
X-IPAS-Result: A0ANAABP65NgmJRdJa1aGgEBAQEBAQEBAQEDAQEBARIBAQEBAgIBAQEBQIFGAgEBAQELAYFSUX5aNjELhDmDSAOFOYhzA4o0jyGBQoERA1QLAQEBDQEBKAoCBAEBhFACF4FsAiU3Bg4CBAEBAQMCAwEBAQEBBQEBAQIBBgQUAQEBAQEBAQFohVANhkQBAQEEIxEMAQE3AQsEAgEIEQQBAQECAiYCAgIfERUICAIECgQFCIJpAYJVAy8BAwudNgKKH3qBMoEBggYBAQYEBIFIQYMSDQuCEwMGgRAqAYJ4hA6GWCccgUlCgRVDgl8+gh5CAgOBKAESAQcCGoMVNoIrgy4EDRUZCA4CfwYTUhcTkUcEgnYBQqYYWwqDEYl9jXQEhVYQg1SLD5ZDoTKDHY9dhGgCAgICBAUCDgEBBoFqImtYEQdwFYMkUBcCDo4fGR6DOYUUhUlzOAIGAQkBAQMJfIsDATJdAQE
IronPort-PHdr: A9a23:9mwzQxBd1cIN2D6spTOGUyQVjhdPi9zP1kY98ZshjL5TdOKo+JGxd EDc5PA4iljPUM2b7v9fkOPZvujmXnBI+peOtn0OMfkuHx8IgMkbhUosVciCD0CoN//saCAnG oJJU1o2t32+OFJeTcD5YVCaq3au7DkUTxP4Mwc9Jun8FoPIycqt0OXn8JzIaAIOjz24MttP
IronPort-HdrOrdr: A9a23:gEu2vaoia2e3f1uBV4NrgLwaV5v+L9V00zEX/kB9WHVpm5Oj9v xGzc506farslkssSkb6K+90KnpewK6yXcH2/huAV7EZnimhILIFvAt0WKG+V3d8kLFh5VgPM tbAs1D4ZjLfCRHZKXBkUmF+rQbsaO6GcmT7I+0pRoAPGIaCZ2IrT0JdzpzeXcGIjWucKBJbK Z0kfA33gZIF05nCviTNz0gZazuttfLnJXpbVotHBg88jSDijuu9frTDwWY9g12aUIN/Z4StU z+1yDp7KSqtP+2jjXG0XXI0phQkNz9jvNeGc23jNQPIDmEsHfrWG0hYczGgNkGmpDp1L8Yqq iLn/7mBbUr15rlRBDwnfIq4Xi57N9h0Q649bbSuwqTnSWwfkNLNyMGv/MCTvMcgHBQ4O2VF8 lwrj+kXtNsfGD9tTW46N7SWx5wkE2o5XIkjO4IlnRaFZATcblLsOUkjQ5o+bo7bWnHAbocYa NT5QDnlYBrmFihHjzkV6lUsZSRt1EIb1i7q2Q5y7ioOglt7TlEJhEjtbkid187heUAord/lp b5Dpg=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.82,277,1613433600"; d="scan'208";a="681655629"
Received: from rcdn-core-12.cisco.com ([173.37.93.148]) by alln-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 06 May 2021 13:15:07 +0000
Received: from mail.cisco.com (xbe-rcd-004.cisco.com [173.37.102.19]) by rcdn-core-12.cisco.com (8.15.2/8.15.2) with ESMTPS id 146DF7AR031290 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Thu, 6 May 2021 13:15:07 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xbe-rcd-004.cisco.com (173.37.102.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.2.792.3; Thu, 6 May 2021 08:15:07 -0500
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Thu, 6 May 2021 09:15:06 -0400
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Thu, 6 May 2021 09:15:06 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=RQNTDHVvcOEMggw37HHOcFqTqB4kZz8q3MZoJUyWPL29byPg/kDNQh2q8dwSfpBbwQjmp8lpMRo6YWgqbCRCm3T4vQfmUY5XJPreNDZjS/QLDBnyy9H6Bz+LoDoCMdGaEAi4BZP+qzIP/7zJllm68t/an1IPcA495SxVs2iuuGV/Tk+Yv2Wu0JnAdTW4qYJsmpTT1oYVEjFzXVuIST0GePxKbwt64CZHTK58e0VGnj7j0g8uuUwvPbOXtBj7wjgmRN1NyT3OuODj1eM5AfMUQHLQuFpLXqSqq6qV7u0mZ5iPorxzqHVa7Re33TAVOMWpGvBJp2gj3jFTowem4Wl/RQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/4dk8zv6NXgf6gHPHChMiy7hAtV5vY7QwIaGPrZHhpU=; b=SXsyudiHUd4m+b5dz9W5kn94z2wlk4JTaybzWtFn/VGZRTOe8cT2rZCVhZP5tfNIlRKBGG3fjJ7LCGlq4jubQR4++/h6K5uONSA9k30nVV1JOODPUCvl82x2EYqAsKAV849qgmK63Kk2IgoJ4AhmDvmWOpy/EQSrFvXRWV6SGMMB2x+xD4QFJktZizmIgX5Z8MCkBO4h0gcu/glxF19F2squEl28qutJnUWoadLfRLkPxOZQjIUJfKrSl3ZilXMw5VQ236ZtFOQeT+fOke8tirq2ejv9iMpMPu3H5Igvdl4DbqpeZuT71Kc0N/5399KV9AZKRhdBfAQxeCTKGXZQZg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/4dk8zv6NXgf6gHPHChMiy7hAtV5vY7QwIaGPrZHhpU=; b=0DskJLT1N3nj3ku481cNTmVl/NUB7kIgu6yaABhGL2toAsDJYE14Ly5StKttsCbmrsTH9p76hqqidvaf4SaNbIjzA1s7uOKdq3PhZ9mK4O3PG6S0k2HOuGikCWgKDKbwZbLZtvgbisjOvf9W4TTFgNcyUmYlzUa2Yzcbh7tGPuc=
Received: from MN2PR11MB4366.namprd11.prod.outlook.com (2603:10b6:208:190::17) by BL0PR11MB2961.namprd11.prod.outlook.com (2603:10b6:208:76::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4108.25; Thu, 6 May 2021 13:15:05 +0000
Received: from MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::217d:4810:6cea:ef72]) by MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::217d:4810:6cea:ef72%6]) with mapi id 15.20.4108.027; Thu, 6 May 2021 13:15:05 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: Sara Dickinson <sara@sinodun.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-dprive-xfr-over-tls@ietf.org" <draft-ietf-dprive-xfr-over-tls@ietf.org>, "dprive-chairs@ietf.org" <dprive-chairs@ietf.org>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>, "tjw.ietf@gmail.com" <tjw.ietf@gmail.com>
Thread-Topic: Robert Wilton's No Objection on draft-ietf-dprive-xfr-over-tls-11: (with COMMENT)
Thread-Index: AQHXQliY0FLTCCfbsE6FbqYBmctO3qrWWYuAgAAVM+A=
Date: Thu, 06 May 2021 13:15:05 +0000
Message-ID: <MN2PR11MB4366CCD89F76A9580D207841B5589@MN2PR11MB4366.namprd11.prod.outlook.com>
References: <162029258799.4438.17810066446598908741@ietfa.amsl.com> <BD583019-493F-4D4A-B69B-C6CDE79993DF@sinodun.com>
In-Reply-To: <BD583019-493F-4D4A-B69B-C6CDE79993DF@sinodun.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: sinodun.com; dkim=none (message not signed) header.d=none;sinodun.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [82.12.233.180]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 85d708cd-96fb-4657-0c1c-08d91090f6da
x-ms-traffictypediagnostic: BL0PR11MB2961:
x-microsoft-antispam-prvs: <BL0PR11MB296185882C0FEE556A4E5E6CB5589@BL0PR11MB2961.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4366.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(346002)(366004)(376002)(39860400002)(136003)(396003)(122000001)(7696005)(71200400001)(52536014)(66476007)(5660300002)(316002)(54906003)(76116006)(38100700002)(66946007)(966005)(66556008)(64756008)(9686003)(83380400001)(186003)(6916009)(478600001)(33656002)(26005)(86362001)(8676002)(6506007)(53546011)(2906002)(4326008)(66446008)(8936002)(55016002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: WPvsduQq4ceYAWgKnMPR2/dsBXC0k2D2rqGKGO3uPJku317sVnOoL91biVrKtfPwYrmXfUu79T+BHSNwh/y++HnH5bFD/y/poU0oIlPR9LFx0n2zKOMf0yoaacpO4hDZivi4HpuXHm68Q2kOlEPPaS1fVbTqjLlrD/0QQJbRlCSLv+mFyZQTBhvu42IVSPHAZ6bCiAs9m9hW2gqC75E6fs/B8ItJChOfDShN6frsyHdAtgk+OMYaUh62t9QqHsHQK22aaCTdZGZgQldP0HzKWQ2ZfuK8Srb6gjVBhXSz1SPq9CI3QDJmFu6cRoX7SCCzXjJjXZ72xS0H91WikPYZsEIiFgdxqBSajGGcmGBoNVT5rxGumb7wwo4dzXmKggGHK1NRGWD4GGU9CFA4gsOIQ5nVS4qBuIwS4dBwkTUd0OF28tzmHUhLV8uDFSNNsPEfLci15db9b3p6NiDHnnq+6fnWm9KMwHWNIlkk5OmKH9ALfpmPULdjrgFg9fAaXkiXjuEhBDzzW4Zasc1uoMoYqprGB45M4sps7oJAwbcl9zTAQgfS9H24yscy+pqc0s2TPVqgeIGSNEJPtqJPH2BH8LRZSqm9cyPTO8Iy0O/qsv6lJ3p65pmSom3leHo2+NEBQ2lxCoE5VElkZVoWvLdmJuVN0f6eA1/DKaemahIlHhfkj0i2Oh8F0MG/UaGKO0u+xaX7PABNpzf0nm4wl9s9djW7iuOSVtG+NV+L58ZTXCZhODfT8saca4O59hbCKX1KJnrgPU5xV4QMSU8t3qBfXQ9KNOGPWFtXGtyqyKL1YHOGBFeA73iGCFFC8Kiz5He1pQis/Mb5uBEi5ciD2HSxh5GCqBmgzAlaaHkTolctFq5U+WsUii598fSX1PfDHbPPLgZvPT/IjMCPDavSZi/b6MMNaeb8dFEW+PuMEloNKgifKKTxsPf8zEmetntFqgtBfRPdKzKcXcBXwPYndclI8ycO6OQm7XBBWe/HPFvvU6K3wKEfpO5YioDhHWvgaqIfzztUgOwz+EPGPRmlpVW5C6NSupKs+Tj9223SbnWh+KHX2d+liURfYvx4E5ISkGjip1xrUus2064TIvC74yhtqZx0wFxTCaI+U/tIS/goe7nEf/VB4J7K1nNumCyxsHH1mous3+wWKaZRftnLYfe+kg+V3+c6edl/jertWXzBKaugHZsBhfx1ZiC13vZMOHor+3Ft7XGEp32w1U3jcbbcOgPJyhAD3D0IgVkzqTx+1zCYp7gy8SJ7bYDOdLfAhpUH4fmkJYzT930+9M/X5NQ63I/fIQEIFalg99r71gItrxvla0yygdJ0wkZ75VN1sr1l
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4366.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 85d708cd-96fb-4657-0c1c-08d91090f6da
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 May 2021 13:15:05.1926 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MIW/WlGJbZhQJU6zVmV/FoaZXiPj21GSsp/XNEDEVR06OUre1rfD3Gfs8Wl76/ZqUTq1kUfAfjvBHHNeHVhmxQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR11MB2961
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.19, xbe-rcd-004.cisco.com
X-Outbound-Node: rcdn-core-12.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/wdGDQC0dLW1pWP3pmgev69d7Vzk>
Subject: Re: [dns-privacy] Robert Wilton's No Objection on draft-ietf-dprive-xfr-over-tls-11: (with COMMENT)
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 May 2021 13:15:14 -0000

Hi Sara,

Updates sound good.  Thanks for checking.

Regards,
Rob


> -----Original Message-----
> From: Sara Dickinson <sara@sinodun.com>
> Sent: 06 May 2021 12:58
> To: Rob Wilton (rwilton) <rwilton@cisco.com>
> Cc: The IESG <iesg@ietf.org>; draft-ietf-dprive-xfr-over-tls@ietf.org;
> dprive-chairs@ietf.org; dns-privacy@ietf.org; tjw.ietf@gmail.com
> Subject: Re: Robert Wilton's No Objection on draft-ietf-dprive-xfr-over-
> tls-11: (with COMMENT)
> 
> 
> 
> > On 6 May 2021, at 10:16, Robert Wilton via Datatracker
> <noreply@ietf.org> wrote:
> >
> > Robert Wilton has entered the following ballot position for
> > draft-ietf-dprive-xfr-over-tls-11: No Objection
> >
> > When responding, please keep the subject line intact and reply to all
> > email addresses included in the To and CC lines. (Feel free to cut this
> > introductory paragraph, however.)
> >
> >
> > Please refer to https://www.ietf.org/iesg/statement/discuss-
> criteria.html
> > for more information about DISCUSS and COMMENT positions.
> >
> >
> > The document, along with other ballot positions, can be found here:
> > https://datatracker.ietf.org/doc/draft-ietf-dprive-xfr-over-tls/
> >
> >
> >
> > ----------------------------------------------------------------------
> > COMMENT:
> > ----------------------------------------------------------------------
> >
> > Hi,
> >
> > Thank you for this document.
> >
> > I was surprised by the length of this document - i.e., 40 pages to say
> to use
> > TLS rather than TCP, and noting that DoH is only 20 pages long!
> >
> > But in reality, this document seems to be more than just zone transfers
> over
> > TLS and seems to clarify/optimize various behavior related to using TCP
> > connection handling.
> 
> Indeed - it started out at about half this length and then grew,
> particularly with the updates to the earlier specifications were added!
> 
> >
> > I have a few concrete suggestions that you are at liberty to handle as
> you see
> > fit:
> >
> > (1) Please ensure that the abstract accurately summarizes the focus on
> the
> > document, with a sentence of two summarizing the updates to RFC1995,
> RFC5936
> > and RFC7766.
> 
> Picked up in other reviews - I have suggested:
> 
> “Additionally, this specification updates RFC1995 and RFC5936 with respect
> to efficient use of TCP connections, and RFC7766 with respect to the
> recommended number of connections between a client and server for each
> transport."
> 
> >
> > (2) I presume that section 21.3 is intended to be deleted (since the
> references
> > appear to only be from section 16 which is planned to be removed), if so
> adding
> > a RFC editor note would be helpful.
> 
> Correct - will add text.
> 
> >
> > (3) It wasn't clear to me whether the text in the appendix is meant to
> be
> > normative or illustrative.   It might be helpful to be clear which it is
> meant
> > to be.
> 
> A good point - it is meant to be illustrative - I’ll add text to clarify.
> 
> Many thanks!
> 
> Sara.

v2.23.0 | Report a Bug | By Email