IETF Logo Mail Archive

Re: [DNSOP] Comments on draft-wessels-dns-zone-digest-02 (fwd)

Paul Wouters <paul@nohats.ca> Sat, 11 August 2018 01:39 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1FE4130E94 for <dnsop@ietfa.amsl.com>; Fri, 10 Aug 2018 18:39:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ITzFEWFgEK4h for <dnsop@ietfa.amsl.com>; Fri, 10 Aug 2018 18:39:24 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [193.110.157.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA288130DC0 for <dnsop@ietf.org>; Fri, 10 Aug 2018 18:39:23 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 41nPmS71Bjz1HN for <dnsop@ietf.org>; Sat, 11 Aug 2018 03:39:20 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1533951561; bh=VBdT+m4mWszSJQ8Lcqa7Clr5/4Hkj8kMLL8zodHPzaI=; h=Date:From:To:Subject; b=kT+1yCkA/SS35CI4Iy82HMQqLcJCqR2arbT7VI1jc2oJpdhDOkIcRuQzrhm825a+f S2Sw2jMCQT3XfL9nBnqydzjb8XJgT3Hl154e4dTnrRsAjBjiP7eqmNV38VGQ45k9KW CKLYdE9JYKLDD93BNKgz7GBJW9t4HVKKJSK0eu8g=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id o9Om4-EvY6kJ for <dnsop@ietf.org>; Sat, 11 Aug 2018 03:39:17 +0200 (CEST)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS for <dnsop@ietf.org>; Sat, 11 Aug 2018 03:39:16 +0200 (CEST)
Received: by bofh.nohats.ca (Postfix, from userid 1000) id D3FAF61D89; Fri, 10 Aug 2018 21:39:15 -0400 (EDT)
DKIM-Filter: OpenDKIM Filter v2.11.0 bofh.nohats.ca D3FAF61D89
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id CC9DD4009E7E for <dnsop@ietf.org>; Fri, 10 Aug 2018 21:39:15 -0400 (EDT)
Date: Fri, 10 Aug 2018 21:39:15 -0400
From: Paul Wouters <paul@nohats.ca>
To: dnsop <dnsop@ietf.org>
Message-ID: <alpine.LRH.2.21.1808102138510.16524@bofh.nohats.ca>
User-Agent: Alpine 2.21 (LRH 202 2017-01-01)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/42CwEvi3LeglraZpDdhPeTn-dy0>
Subject: Re: [DNSOP] Comments on draft-wessels-dns-zone-digest-02 (fwd)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 11 Aug 2018 01:39:27 -0000

I am not objecting other then having 0 desire to help out unsigned zones replace origin security with transport security.

Look at the suggested use of eSNI in unsigned DNS assuming some kind of DOH / DOT transport.

This record type could easily be abused for that.

Which is why my preference is to only sign unsigned records.

Certainly, for the root zone, RRSIGs can be validated. For other large zones where that is not the case there isn’t really a use case either. Those large TLDs can’t be distributed as a file without being obsolete once the transfer completed.

Paul

Sent from my phone

> On Aug 10, 2018, at 17:22, Joe Abley <jabley@hopcount.ca> wrote:
>
> Paul, you seem suspicious that there is some underhand camel attack
> being planned, here, and that the forces of good must assemble to
> reveal the ugly truth and save the caravan.
>
> I think being able to verify the integrity of a zone as a complete
> data structure is useful.
>
> I think interop is useful.
>
> I think this specification is pretty good.
>
> I think stable specifications promote interop and make things like
> this more useful.
>
> Your objections seem to boil down to: I don't like this; I'd achieve
> the kinds of things you want to achieve in other ways. That seems like
> useful input to a document that discusses the relative merits of doing
> things in many ways; that's not what this document is about, though.
>
> So I must be missing something because I don't understand what you're
> objecting to.
>
>> On Aug 10, 2018, at 16:41, Paul Wouters <paul@nohats.ca> wrote:
>>
>> On Fri, 10 Aug 2018, Wessels, Duane wrote:
>>
>>>> But there are already mechanisms for this at the data set level.  (This is a "belts and suspenders" style argument.)  What if -err- when, in a zone's distribution, the glue records are either forged or simply fat-fingered?  That's covered, in a way that is more efficient - in a lazy evaluation way.  Mangled glue never referenced needs not be checked, when it is needed there's backup in the authoritative version.  If all else fails, DNSSEC will flag whatever response as suspect.
>>>
>>> Yes, certainly DNSSEC protects from modification of answers.  It generally protects recursives who validate.  But it doesn't protect consumers of zone files.
>>
>> By design....
>>
>>> Another limitation I've mentioned before, where DNSSEC doesn't protect you, is that a delegation could be falsified such that traffic goes to an eavesdropper that just records but doesn't modify messages.
>>
>> but on most networks you connect to that you don't trust, they could
>> just be monitoring all your port 53 traffic anyway? I don't see this
>> much as a use case. An attacker that cannot see your traffic, but could
>> get to see your DNS root queries but only briefly if you cache or
>> actually use the root zone you just transfered from them. Also query
>> minimalization makes that use case very uninteresting.
>>
>>> I'd also argue that maybe applications shouldn't necessarily trust a file just because its "on disk." The application doesn't know how it got there, or what may have been done to it.
>>
>> Sure but applications should either validate or trust the local
>> validator loading the zone. So that limits the discussion to
>> glue/NS only.
>>
>>> I'm not sure this is what you mean by "speed of execution" but as an example, my implementation (which uses ldns) can calculate and verify a SHA256 signed root zone digest in under 100 msec.
>>>
>>> $ sort --random-sort root.zone.signed | ldns-zone-digest -t -p 2 -c -v .
>>> Loading Zone...22539 records
>>> Remove existing ZONEMD...
>>> Add placeholder ZONEMD...
>>> Calculating Digest...Done
>>> Calculating Digest...Done
>>> Found and calculated digests do MATCH.
>>> TIMINGS: load  142.18 calculate   82.72 verify   52.24 update    0.00
>>
>> I don't see it validating the ZONEMD RRSIG here ? :P
>>
>> Paul
>>
>> _______________________________________________
>> DNSOP mailing list
>> DNSOP@ietf.org
>> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email