Re: [dnsext] Fwd: I-D Action: draft-ietf-dnsext-dnssec-algo-signal-02.txt
Warren Kumari <warren@kumari.net> Wed, 13 July 2011 19:54 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix)
with ESMTP id 7E11811E808C for <dnsext@ietfa.amsl.com>;
Wed, 13 Jul 2011 12:54:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.499
X-Spam-Level:
X-Spam-Status: No, score=-102.499 tagged_above=-999 required=5 tests=[AWL=0.100,
BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LGnvHk-vs+Wu for
<dnsext@ietfa.amsl.com>; Wed, 13 Jul 2011 12:54:00 -0700 (PDT)
Received: from vimes.kumari.net (vimes.kumari.net [198.186.192.250]) by
ietfa.amsl.com (Postfix) with ESMTP id D01A111E8135 for <dnsext@ietf.org>;
Wed, 13 Jul 2011 12:53:56 -0700 (PDT)
Received: from dot.her.corp.google.com (unknown [74.202.225.33]) by
vimes.kumari.net (Postfix) with ESMTPSA id 4D95E1B409DA;
Wed, 13 Jul 2011 15:53:56 -0400 (EDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset=us-ascii
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <4158B8A7-7773-4819-90F4-BF6F7973B1C7@gmail.com>
Date: Wed, 13 Jul 2011 15:53:55 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <4EE862D0-592A-420C-BECA-66B9B53A9B72@kumari.net>
References: <20110706135012.13666.6167.idtracker@ietfa.amsl.com>
<4158B8A7-7773-4819-90F4-BF6F7973B1C7@gmail.com>
To: Scott Rose <scottr.nist@gmail.com>
X-Mailer: Apple Mail (2.1084)
Cc: dnsext@ietf.org
Subject: Re: [dnsext] Fwd: I-D Action:
draft-ietf-dnsext-dnssec-algo-signal-02.txt
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>,
<mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>,
<mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2011 19:54:00 -0000
On Jul 6, 2011, at 10:00 AM, Scott Rose wrote: > An updated version of the algo-signal draft to address the issues in WGLC. Specific changes: > > 1. Changed the wording in 3.4.1 to remove the RFC2119 wording on setting the DO bit. > > 2. Changed section 4 wording to indicate DNS proxy systems and added a ref to RFC 5625. > > 3. fixed some typos and minor wording changes to stress that the DAU option is for signaling only and does not specify any change to how servers construct a response. > > Scott Oooh, I like this version.... Some simple nits: Section1: Introduction: O: "for use with DNSSEC (see . " C: Somethings missing here :-P O: "by which a client query can signal a set of algorithms it implements." P: "by which a client query can signal a set of algorithms which it implements. C: or "that" or something ? Section 2 O: "for the DNSSEC Algorithm Understood (DAU)" P: for the DNSSEC Algorithms Understood (DAU)" C: Plural? O: "DNSSEC algorithm codes are 1 octet long so this value is the number of octets." P: "" C: Is this sentence needed? I don't have proposed text, but I found it broke the flow of the text... Section 3.1: O: "So optimal setting of the DAU" P: "Optimal setting of the DAU" Section 3.2: O: "This way thee validating stub resolver" P: "This way the validating stub resolver" C: 'thee" is *so* last century... Section 3.4.1: O: "A validating recursive resolver sets..." C: It *might* be interesting to somewhere also include a flag saying if the DAU was included because the client did so, or if the recursive did so because of local policy... Section 6: O: "Zone administrators that are planning" P: "Zone administrators who are planning" C: Just sounds better (IMO). W > > Begin forwarded message: > >> From: internet-drafts@ietf.org >> Date: July 6, 2011 9:50:12 AM EDT >> To: i-d-announce@ietf.org >> Cc: dnsext@ietf.org >> Subject: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-02.txt >> >> A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the DNS Extensions Working Group of the IETF. >> >> Title : Signaling Cryptographic Algorithm Understanding in DNSSEC >> Author(s) : Steve Crocker >> Scott Rose >> Filename : draft-ietf-dnsext-dnssec-algo-signal-02.txt >> Pages : 8 >> Date : 2011-07-06 >> >> The DNS Security Extensions (DNSSEC) were developed to provide origin >> authentication and integrity protection for DNS data by using digital >> signatures. These digital signatures can be generated using >> different algorithms. This draft sets out to specify a way for >> validating end-system resolvers to signal to a server which >> cryptographic algorithms they support. >> >> >> >> A URL for this Internet-Draft is: >> http://www.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-02.txt >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> This Internet-Draft can be retrieved at: >> ftp://ftp.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-02.txt >> _______________________________________________ >> dnsext mailing list >> dnsext@ietf.org >> https://www.ietf.org/mailman/listinfo/dnsext > > _______________________________________________ > dnsext mailing list > dnsext@ietf.org > https://www.ietf.org/mailman/listinfo/dnsext >
- [dnsext] I-D Action: draft-ietf-dnsext-dnssec-alg… internet-drafts
- [dnsext] Fwd: I-D Action: draft-ietf-dnsext-dnsse… Scott Rose
- Re: [dnsext] Fwd: I-D Action: draft-ietf-dnsext-d… Warren Kumari
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Dick Franks
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Dick Franks
- Re: [dnsext] Fwd: I-D Action: draft-ietf-dnsext-d… Dick Franks
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Scott Rose
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Patrik Fältström
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Dick Franks