IETF Logo Mail Archive

Re: [dnsext] Fwd: I-D Action: draft-ietf-dnsext-dnssec-algo-signal-02.txt

Warren Kumari <warren@kumari.net> Wed, 13 July 2011 19:54 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E11811E808C for <dnsext@ietfa.amsl.com>; Wed, 13 Jul 2011 12:54:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.499
X-Spam-Level:
X-Spam-Status: No, score=-102.499 tagged_above=-999 required=5 tests=[AWL=0.100, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LGnvHk-vs+Wu for <dnsext@ietfa.amsl.com>; Wed, 13 Jul 2011 12:54:00 -0700 (PDT)
Received: from vimes.kumari.net (vimes.kumari.net [198.186.192.250]) by ietfa.amsl.com (Postfix) with ESMTP id D01A111E8135 for <dnsext@ietf.org>; Wed, 13 Jul 2011 12:53:56 -0700 (PDT)
Received: from dot.her.corp.google.com (unknown [74.202.225.33]) by vimes.kumari.net (Postfix) with ESMTPSA id 4D95E1B409DA; Wed, 13 Jul 2011 15:53:56 -0400 (EDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset=us-ascii
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <4158B8A7-7773-4819-90F4-BF6F7973B1C7@gmail.com>
Date: Wed, 13 Jul 2011 15:53:55 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <4EE862D0-592A-420C-BECA-66B9B53A9B72@kumari.net>
References: <20110706135012.13666.6167.idtracker@ietfa.amsl.com> <4158B8A7-7773-4819-90F4-BF6F7973B1C7@gmail.com>
To: Scott Rose <scottr.nist@gmail.com>
X-Mailer: Apple Mail (2.1084)
Cc: dnsext@ietf.org
Subject: Re: [dnsext] Fwd: I-D Action: draft-ietf-dnsext-dnssec-algo-signal-02.txt
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2011 19:54:00 -0000

On Jul 6, 2011, at 10:00 AM, Scott Rose wrote:

> An updated version of the algo-signal draft to address the issues in WGLC.  Specific changes:
> 
> 1.  Changed the wording in 3.4.1 to remove the RFC2119 wording on setting the DO bit.  
> 
> 2. Changed section 4 wording to indicate DNS proxy systems and added a ref to RFC 5625.
> 
> 3. fixed some typos and minor wording changes to stress that the DAU option is for signaling only and does not specify any change to how servers construct a response.
> 
> Scott

Oooh, I like this version....

Some simple nits:

Section1: Introduction:

O: "for use with DNSSEC (see . "
C: Somethings missing here :-P

O: "by which a client query can signal a set of algorithms it implements."
P: "by which a client query can signal a set of algorithms which it implements.
C: or "that" or something ?

Section 2
O: "for the DNSSEC Algorithm Understood (DAU)"
P: for the DNSSEC Algorithms Understood (DAU)"
C: Plural?

O: "DNSSEC algorithm codes are 1 octet long so this value is the number of octets."
P: ""
C: Is this sentence needed? I don't have proposed text, but I found it broke the flow of the text...

Section 3.1:
O: "So optimal setting of the DAU"
P: "Optimal setting of the DAU"

Section 3.2:
O: "This way thee validating stub resolver"
P: "This way the validating stub resolver"
C: 'thee" is *so* last century...

Section 3.4.1:
O: "A validating recursive resolver sets..."
C: It *might* be interesting to somewhere also include a flag saying if the DAU was included because the client did so, or if the recursive did so because of local policy... 

Section 6:
O: "Zone administrators that are planning"
P: "Zone administrators who are planning"
C: Just sounds better (IMO).


W

> 
> Begin forwarded message:
> 
>> From: internet-drafts@ietf.org
>> Date: July 6, 2011 9:50:12 AM EDT
>> To: i-d-announce@ietf.org
>> Cc: dnsext@ietf.org
>> Subject: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-02.txt
>> 
>> A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the DNS Extensions Working Group of the IETF.
>> 
>> 	Title           : Signaling Cryptographic Algorithm Understanding in DNSSEC
>> 	Author(s)       : Steve Crocker
>>                         Scott Rose
>> 	Filename        : draft-ietf-dnsext-dnssec-algo-signal-02.txt
>> 	Pages           : 8
>> 	Date            : 2011-07-06
>> 
>>  The DNS Security Extensions (DNSSEC) were developed to provide origin
>>  authentication and integrity protection for DNS data by using digital
>>  signatures.  These digital signatures can be generated using
>>  different algorithms.  This draft sets out to specify a way for
>>  validating end-system resolvers to signal to a server which
>>  cryptographic algorithms they support.
>> 
>> 
>> 
>> A URL for this Internet-Draft is:
>> http://www.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-02.txt
>> 
>> Internet-Drafts are also available by anonymous FTP at:
>> ftp://ftp.ietf.org/internet-drafts/
>> 
>> This Internet-Draft can be retrieved at:
>> ftp://ftp.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-02.txt
>> _______________________________________________
>> dnsext mailing list
>> dnsext@ietf.org
>> https://www.ietf.org/mailman/listinfo/dnsext
> 
> _______________________________________________
> dnsext mailing list
> dnsext@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsext
>

v2.8.7 | Report a Bug | By Email