[DNSOP] Updated cheese-shop.
Warren Kumari <warren@kumari.net> Thu, 25 February 2016 04:58 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7B0D21AD17F for <dnsop@ietfa.amsl.com>; Wed, 24 Feb 2016 20:58:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.277
X-Spam-Level:
X-Spam-Status: No, score=-1.277 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G_HRrQYk3t3i for <dnsop@ietfa.amsl.com>; Wed, 24 Feb 2016 20:58:22 -0800 (PST)
Received: from mail-yk0-x22f.google.com (mail-yk0-x22f.google.com [IPv6:2607:f8b0:4002:c07::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 30EF31ACE9C for <dnsop@ietf.org>; Wed, 24 Feb 2016 20:58:22 -0800 (PST)
Received: by mail-yk0-x22f.google.com with SMTP id u9so17742191ykd.1 for <dnsop@ietf.org>; Wed, 24 Feb 2016 20:58:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to:content-type; bh=ubdfNW9bES4ugHKnrsGae7gEc2BCHUCm0SgXa+yMP0s=; b=OlyWI2pgWI3z8H7ZDrhrnsIkE5WL6ANABHs6t3VCOllw+gRMOX2/N7ZFgARSg+QPMC pB07HxF1z0j0OLaJUlf2r+nIQclAZ6oYYn0hgkQj8dcyVzPAlFDK3YHEdj8FUet+JmX0 EAEEsCJ9eRIpSQprOPUoR3sGo/+73DjOOIAcF51MtGuUaF9i3IORQHxHm7Du+2svXgbZ HIx1xCX551errQoTUka0F8qeumWVaYWMTRASe22VLeDzFFR1VP+jfZP4+Y+eJuDM45xX QVfZFx0ZZMcvh2VvZr19L3tHQlQIw20o4l/84SCyxT+CLuF2+Qke6FWWulkQgGb9XFvj iRnw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:from:date:message-id:subject:to :content-type; bh=ubdfNW9bES4ugHKnrsGae7gEc2BCHUCm0SgXa+yMP0s=; b=Ju6HUAgjxpQ6z77b3G9ol714aQFhujKSNRjiUmJLB9U34KRfn5y8sM0uh2V2HgQyeV lp89lc2c6QYQ9fnQp3ZgHaboFb/ISeNunsGYJpNGK6dcbiQlcf5DXP68PwF5+Z/jYO1t vGMXKdngs99ZoCjh1iu75Qjxhggk6ploHvsrJtFbW+AoHpTGoJBQ+2fJda4fEwEdi+MN lxunxp1vWHFfmm8R37CoCuN2da1w4GjRXiWOFelVMCqNgU39aqkLqI7aQYJCCKk3jSqx g3PjBUU9jMhRQatJo/nPkL7wlQ4Gr4eckS8z934hTKvQ0n+VqcG74AbPNqmFTFadQtBs qu0g==
X-Gm-Message-State: AG10YORpZzlJNw9xhPIUvWfbs8nEUeKpqTvYUAbmqVvZv5r8ocBaIgm/y6edvfXidEaypSO71SQJqIVM0NLTc2bK
X-Received: by 10.37.231.133 with SMTP id e127mr22744007ybh.137.1456376301471; Wed, 24 Feb 2016 20:58:21 -0800 (PST)
MIME-Version: 1.0
From: Warren Kumari <warren@kumari.net>
Date: Thu, 25 Feb 2016 04:58:11 +0000
Message-ID: <CAHw9_i+qiU+rMcPHfv=EnogiwuMJzoaTi8a_KUWSepbLd7j6ug@mail.gmail.com>
To: dnsop <dnsop@ietf.org>
Content-Type: multipart/alternative; boundary="94eb2c0b12ce1bf789052c910883"
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnsop/4HDYlUQkVSX_4qXfKdlwgcvufOs>
Subject: [DNSOP] Updated cheese-shop.
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Feb 2016 04:58:23 -0000
Dear DNSOP, We have recently updated "Believing NSEC records in the DNS root" ( https://tools.ietf.org/html/draft-wkumari-dnsop-cheese-shop-01). This incorporates some comments, but also does a better job of explaining the technique, what the benefits are, and why we are only handling the special case of the root zone. We believe that, in this limited use-case the suggestions in Section 4.5 of RFC4035 are not as relevant. We also believe that the NSEC case (and no wildcards :-)) is simpler to solve than the NSEC3 case. For these reasons we think that it is worth pursuing this in parallel with Fujiwara-san's "Aggressive use of NSEC/NSEC3" document. cheese-shop does not conflict with "Aggressive use...", rather it complements it, and can demonstrate the technique (in this restricted use case). We welcome any feedback, including tomatoes, howls of derisive laughter, etc. W
- [DNSOP] Updated cheese-shop. Warren Kumari
- Re: [DNSOP] Updated cheese-shop. John Levine
- Re: [DNSOP] Updated cheese-shop. abby pan
- Re: [DNSOP] Updated cheese-shop. 神明達哉
- Re: [DNSOP] Updated cheese-shop. Warren Kumari
- Re: [DNSOP] Updated cheese-shop. 神明達哉