Re: [DNSOP] Call for Adoption: draft-pwouters-powerbind

Linus Nordberg <linus@nordberg.se> Wed, 29 April 2020 21:45 UTC

Return-Path: <linus@nordberg.se>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 33F4A3A00E1 for <dnsop@ietfa.amsl.com>; Wed, 29 Apr 2020 14:45:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=nordberg.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sSpBHW_YPn9G for <dnsop@ietfa.amsl.com>; Wed, 29 Apr 2020 14:44:59 -0700 (PDT)
Received: from smtp.adb-centralen.se (smtp.adb-centralen.se [193.10.5.129]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EAE3B3A00D3 for <dnsop@ietf.org>; Wed, 29 Apr 2020 14:44:58 -0700 (PDT)
Received: from adb-centralen.se (localhost [127.0.0.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.adb-centralen.se (Postfix) with ESMTPSA id 47274C6632D; Wed, 29 Apr 2020 23:44:56 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nordberg.se; s=smtp; t=1588196696; bh=mDNUx3oBH9YwFSLVVGwQ0gJcB8v2X8gNTWbbFr7i+Lc=; h=From:To:Cc:Subject:References:Date:In-Reply-To; z=From:=20Linus=20Nordberg=20<linus@nordberg.se>|To:=20Tim=20Wicins ki=20<tjw.ietf@gmail.com>|Cc:=20dnsop=20<dnsop@ietf.org>|Subject:= 20Re:=20[DNSOP]=20Call=20for=20Adoption:=20draft-pwouters-powerbin d|References:=20<CADyWQ+FLrTy0gy8iCyAPsDpiumDNQHX4TGPni43ThA=3DW3f mZew@mail.gmail.com>|Date:=20Wed,=2029=20Apr=202020=2023:44:53=20+ 0200|In-Reply-To:=20<CADyWQ+FLrTy0gy8iCyAPsDpiumDNQHX4TGPni43ThA=3 DW3fmZew@mail.gmail.com>=0D=0A=09(Tim=20Wicinski's=20message=20of= 20"Mon,=2020=20Apr=202020=2014:03:03=20-0400"); b=G3sWGx9Z7X4xF6orCGJi0s9c4uV+cAG71N1IjpuFphLWUd0Tio744afHOf8tIbQtT 0kOLlCebFFFms+wjvwq0Zoxmuv2KVXYAvqAULlUypHU9k0w9Se+mZwz8eZbKenD+lo wewu8qhcXUA1HuLXp0HAOvQQByBzHbcnZhXFV/sryGnANIWSaB7iObEuEANLAYdORm yJKBeV6YUS9z2YdnXTt8emvirSr8C5whPzPpq4KFpkedLf5z1dz+Y0z6Nz8aNR8tHX dDIGXsy55sGyzAlR03f7TxZyT0U+oZdapTcUMTlvvy0jKWi5QD2sy/MfM7TH+UCzYa s7Ors1qDH1nQQ==
From: Linus Nordberg <linus@nordberg.se>
To: Tim Wicinski <tjw.ietf@gmail.com>
Cc: dnsop <dnsop@ietf.org>
References: <CADyWQ+FLrTy0gy8iCyAPsDpiumDNQHX4TGPni43ThA=W3fmZew@mail.gmail.com>
Date: Wed, 29 Apr 2020 23:44:53 +0200
In-Reply-To: <CADyWQ+FLrTy0gy8iCyAPsDpiumDNQHX4TGPni43ThA=W3fmZew@mail.gmail.com> (Tim Wicinski's message of "Mon, 20 Apr 2020 14:03:03 -0400")
Message-ID: <87ees67yqy.fsf@nordberg.se>
Mime-Version: 1.0
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/2jqvw7QTq0Aly8V1ZUFjYSYVSXg>
Subject: Re: [DNSOP] Call for Adoption: draft-pwouters-powerbind
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Apr 2020 21:45:03 -0000

Tim Wicinski <tjw.ietf@gmail.com> wrote
Mon, 20 Apr 2020 14:03:03 -0400:

> This starts a Call for Adoption for draft-pwouters-powerbind

I am interested in the idea of a DNSSEC transparency system, i.e.
externally verifiable append-only logs of observed DNSSEC data, and do
support adoption of draft-pwouters-powerbind which I'm also willing to
review.

My experience with DNSSEC transparency is limited to an implementation
of such a log and the operation of a log instance. This experiment was
based on an implementation of [draft-zhang-trans-ct-dnssec] and was set
up at IETF96.

[draft-zhang-trans-ct-dnssec] https://tools.ietf.org/html/draft-zhang-trans-ct-dnssec-03