[DNSOP] Term for "signing software"? Re: I-D Action: draft-ietf-dnsop-terminology-bis-02.txt
Dan York <york@isoc.org> Tue, 16 August 2016 14:36 UTC
Return-Path: <york@isoc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1AD2212D876 for <dnsop@ietfa.amsl.com>; Tue, 16 Aug 2016 07:36:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isoc.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1gOy0Q_yOC0V for <dnsop@ietfa.amsl.com>; Tue, 16 Aug 2016 07:36:49 -0700 (PDT)
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (mail-dm3nam03on0077.outbound.protection.outlook.com [104.47.41.77]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3571012D872 for <dnsop@ietf.org>; Tue, 16 Aug 2016 07:36:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isoc.onmicrosoft.com; s=selector1-isoc-org; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=J9SVgxNrtFjVDiVyzEZNi/L3W9tDegBfJBd0+Peo6Co=; b=q57dchTIzDfi8csfdYz0dgfjQykCqKKhvWoafSF/2xM/kFOiKGXDjQOOwjiiFBTO1P+h/BfnwWeHWqdnAmPYVboPj4tP8f79VLNASTDDn2gzRN3SWz0OIO/hNJ+Fmhlk2J/wugb9TYrd23ZheMuoW0NYFX8BGMFEW0YTlhuaLnY=
Received: from SN1PR0601MB1663.namprd06.prod.outlook.com (10.163.203.145) by SN1PR0601MB1663.namprd06.prod.outlook.com (10.163.203.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.549.15; Tue, 16 Aug 2016 14:36:45 +0000
Received: from SN1PR0601MB1663.namprd06.prod.outlook.com ([10.163.203.145]) by SN1PR0601MB1663.namprd06.prod.outlook.com ([10.163.203.145]) with mapi id 15.01.0549.027; Tue, 16 Aug 2016 14:36:45 +0000
From: Dan York <york@isoc.org>
To: Paul Hoffman <paul.hoffman@vpnc.org>
Thread-Topic: Term for "signing software"? Re: [DNSOP] I-D Action: draft-ietf-dnsop-terminology-bis-02.txt
Thread-Index: AQHR7m8viXF5DtuTG0iJVn0el6YxLaA5Ax8AgBK3PQA=
Date: Tue, 16 Aug 2016 14:36:45 +0000
Message-ID: <D2C33822-180C-437A-B218-050156F1497A@isoc.org>
References: <20160804164224.15888.13036.idtracker@ietfa.amsl.com> <028C7AE5-2F62-46FD-96A9-504D0F46561A@vpnc.org>
In-Reply-To: <028C7AE5-2F62-46FD-96A9-504D0F46561A@vpnc.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=york@isoc.org;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [135.23.127.182]
x-ms-office365-filtering-correlation-id: e72c746e-1008-490e-fff6-08d3c5e2bfb9
x-microsoft-exchange-diagnostics: 1; SN1PR0601MB1663; 6:n75LKcxSt+WCnGeW2pFaZ2usF+Di3IBhO/5ERCaKFtcSHr3azVi5OZDZG27Sa7U46vTg08ifhKf7tkz4Wg/T5Y9ddsWkARS+MNPGyNMcdOIujfa01orq1YBbchnyzHir7OlFFUJLDq7HC1ATwORseepCH7bfdbuq5mBVvVqhk28kAy9xslIQtRaztsHJUlmqVy8HikDpq1Oi4kYLk2B6Sbx7vYB1LSyhJ2drErFtHaFt+aH4iQD4SMNuiWre0AVkUZnjIthIxgoRn//KWd2yqkjZ3Plg00xvLDSGGJ+Yiy4=; 5:eHRJIajgC+SggGdIqVhvBJs5qFj6Tv1eE3Hnnjl7QF4ZJgAoGPzGF4l5+enr63prQNSR87eEHxwz/Fq8gdeCtPlr3QThifKjylLiVPyzVqpWfOh2dJV0qO0wVlXVnM6zNFKc9bRPjCd8wTAeurCndg==; 24:7lNeywIwXYOqaYD6hJr1REC3mRCFqOmuZ7/qq3AUM5O1Hbcihh53LvV0J2bcT/BGH+ecAbRXMZt607/BwnzChdZULuxAuELrbPGCHoUQe04=; 7:hc/s595lk1tdfLtZ//ssnbXadCy554myWE3zhIG9HiHZfsl96zlV9NmxLL8m+ZDpLYvHIgDj7ywwO8/1gSP56kVoQvd1VJY/Y8WHP388pdNqbT1XKOrtrqcxpvKD6rJvH0Yl0YbT0TF3qyYV6wbtuoPxumDYr++FZAQWtFlRe3a3/6BibwM91YK1z5VbBJOHCg/843+SDxvxfyYNGXhXHVhMl6KPXwtVldARKrQYg95OWCV57uE3v01E3z/elVpi
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:SN1PR0601MB1663;
x-microsoft-antispam-prvs: <SN1PR0601MB166382D0AC5BEDA8F3CB3EBBB7130@SN1PR0601MB1663.namprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(158342451672863)(31418570063057);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040176)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001); SRVR:SN1PR0601MB1663; BCL:0; PCL:0; RULEID:; SRVR:SN1PR0601MB1663;
x-forefront-prvs: 0036736630
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(7916002)(199003)(377454003)(24454002)(51914003)(189002)(15975445007)(586003)(10400500002)(122556002)(2906002)(3660700001)(86362001)(7906003)(33656002)(3280700002)(87936001)(83716003)(54356999)(76176999)(106356001)(106116001)(3846002)(8936002)(5002640100001)(50986999)(6116002)(102836003)(92566002)(4326007)(68736007)(101416001)(11100500001)(66066001)(189998001)(229853001)(16236675004)(110136002)(15395725005)(36756003)(99286002)(230783001)(97736004)(2950100001)(19580405001)(105586002)(77096005)(2900100001)(8676002)(82746002)(7846002)(7736002)(19580395003)(81166006)(81156014)(19617315012)(86643001)(104396002); DIR:OUT; SFP:1101; SCL:1; SRVR:SN1PR0601MB1663; H:SN1PR0601MB1663.namprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: isoc.org does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_D2C33822180C437AB218050156F1497Aisocorg_"
MIME-Version: 1.0
X-OriginatorOrg: isoc.org
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Aug 2016 14:36:45.7028 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 89f84dfb-7285-4810-bc4d-8b9b5794554f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN1PR0601MB1663
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/4w97LOFA1ew23f9eu73AOaY5Qo4>
Cc: "dnsop@ietf.org" <dnsop@ietf.org>
Subject: [DNSOP] Term for "signing software"? Re: I-D Action: draft-ietf-dnsop-terminology-bis-02.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Aug 2016 14:36:51 -0000
Paul, Thanks for the update... comment below: On Aug 4, 2016, at 12:48 PM, Paul Hoffman <paul.hoffman@vpnc.org<mailto:paul.hoffman@vpnc.org>> wrote: Our intention for this month is to add a bunch of other terms from RFCs. I'll also start some threads about terms that we should probably define but that are not in RFCs. In writing the draft about crypto algorithm agility ( https://tools.ietf.org/html/draft-york-dnsop-deploying-dnssec-crypto-algs-01 ) we ran into an issue where we needed to talk about "signing software". (section 2.3) This is software such as OpenDNSSEC that is used in the current DNS infrastructure to do the actual signing of zones. I seem to recall various vendors also having services that would do the signing on the fly for you. This software is of course part of an "authoritative server" defined in your section 5 - https://tools.ietf.org/html/draft-ietf-dnsop-terminology-bis-02#section-5 - but also can be operated on a separate server. I don't know if you / others feel this warrants having an entry in the DNS terminology, but I thought I would point it out. We're also definitely open to adjusting the crypto agility draft to use another term if someone has a better suggestion than "signing software". Dan -- Dan York Senior Content Strategist, Internet Society york@isoc.org<mailto:york@isoc.org> +1-802-735-1624 Jabber: york@jabber.isoc.org<mailto:york@jabber.isoc.org> Skype: danyork http://twitter.com/danyork http://www.internetsociety.org/
- Re: [DNSOP] Term for "signing software"? Re: I-D … william manning
- [DNSOP] Term for "signing software"? Re: I-D Acti… Dan York
- Re: [DNSOP] I-D Action: draft-ietf-dnsop-terminol… Paul Hoffman
- [DNSOP] I-D Action: draft-ietf-dnsop-terminology-… internet-drafts