IETF Logo Mail Archive

Re: [DNSOP] [homenet] WGLC on "redact" and "homenet-dot"

Suzanne Woolf <suzworldwide@gmail.com> Thu, 15 December 2016 17:29 UTC

Return-Path: <suzworldwide@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06E091299AD; Thu, 15 Dec 2016 09:29:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id itvKKkBXMAfi; Thu, 15 Dec 2016 09:29:52 -0800 (PST)
Received: from mail-qt0-x244.google.com (mail-qt0-x244.google.com [IPv6:2607:f8b0:400d:c0d::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 49F28129B70; Thu, 15 Dec 2016 09:29:52 -0800 (PST)
Received: by mail-qt0-x244.google.com with SMTP id l20so7821341qta.1; Thu, 15 Dec 2016 09:29:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:subject:from:in-reply-to:date:cc:message-id:references :to; bh=9KtHIVpbA6LALqiykvMgwI8d08Xlhz4PP0xcFAU6S0s=; b=Yc3MOxMgIvLLrauajMYSb8G2gr+GFg9OFHJqh1vAQyHZW7LUBWl8sJkr/8tfY4hIwF PM0fBaJYV6QNCqTR4TnO0fiZpzlsFEqW9w2QI7TvJtqwLJqEKXEbMMm4usyLKOhdtcyb +US5X2APQfP2MClZMnng98hiSezSl0m3eJcxL5nqlfjHRpFKwd5cnyfT8u5Uvd7uD+YK 2d3RRKBihuw5yei3wyM1E5fgfUDVp4I65M7G1eabLqMUiDdGuCChCvenYabznE4z+Fqi 1Y3WmNGWG0yKwPdE6pLHvnBF6qGW5KQOsYleSNjkJi+l1xJo+7thSBB77+gUvxgv1xe4 8d6g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; bh=9KtHIVpbA6LALqiykvMgwI8d08Xlhz4PP0xcFAU6S0s=; b=QSjDu2ge0ios5jqT+NGlnEiL4Ms7BwP0iSNUHPUoUq0bp+1Ab/gdBN3ZUbQwOu4qBp ClH57G6lyudPsgZHEGaPAsq9BT9SxbziLRbB2P6cAoA9JQcyO7ebHkayXVmzp0AoL1KK ODKXCvFSgQZMgCXJjYNbcfqnBZgKO+R1clSMh+3wN8BGINi91yxY6yYUBRWGDoT8O/gJ wTtzAIGmz9rJSmXpyA7TetbwkVEvEvP86LRp0j3qTVjCNAnQyfsw17RUpkx6OCEWY1Ag 6UJ/axlmWP795ZwJ/Dtuh74+hz1rhH8hJeWx+hISBg1R88MnY/Di5PDt1i6S4/4P6Upj zrLw==
X-Gm-Message-State: AIkVDXKC5cr804uC3tcj/l5lBJ5xRf1+Ia9pHaQbGC6d9Q/ej2+kq1XoF84JRF/J8RlS+Q==
X-Received: by 10.200.50.53 with SMTP id x50mr1685746qta.207.1481822991294; Thu, 15 Dec 2016 09:29:51 -0800 (PST)
Received: from ?IPv6:2601:181:c381:c20:98b7:7e23:f387:adb6? ([2601:181:c381:c20:98b7:7e23:f387:adb6]) by smtp.gmail.com with ESMTPSA id m30sm1539301qta.7.2016.12.15.09.29.50 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 15 Dec 2016 09:29:50 -0800 (PST)
Content-Type: multipart/alternative; boundary="Apple-Mail=_79C7FDD6-B34F-4275-B879-849906CCD169"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\))
From: Suzanne Woolf <suzworldwide@gmail.com>
In-Reply-To: <4A870505-070B-4065-B360-5A98485E4CEB@fugue.com>
Date: Thu, 15 Dec 2016 12:29:48 -0500
Message-Id: <77A30093-29DB-4B7C-93FB-96BCEAC0A3A5@gmail.com>
References: <4ab2a538-603e-4e7a-3be9-ad75ed459006@bellis.me.uk> <B192A1B3-03FF-43D1-AD30-12BBA2D65DF0@gmail.com> <9fe0e34d-51e9-bdf3-a650-d8b3681f1cd8@bellis.me.uk> <CAPt1N1=Z2xERw68-=iFGgYYnEO3eDW-8tvhmTmaf4+vU-24grQ@mail.gmail.com> <C059877D829F76429F49E0B48705D888F7FD2C7B@EXCH-01.CORP.CIRA.CA> <4A870505-070B-4065-B360-5A98485E4CEB@fugue.com>
To: Ted Lemon <mellon@fugue.com>
X-Mailer: Apple Mail (2.2104)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Bq9B4kllimcwhZC45tnuLRd-x90>
Cc: HOMENET <homenet@ietf.org>, Jacques Latour <jacques.latour@cira.ca>, "dnsop@ietf.org WG" <dnsop@ietf.org>
Subject: Re: [DNSOP] [homenet] WGLC on "redact" and "homenet-dot"
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Dec 2016 17:29:54 -0000

(no hats)

> On Dec 15, 2016, at 12:20 PM, Ted Lemon <mellon@fugue.com> wrote:
> 
> On Dec 15, 2016, at 11:05 AM, Jacques Latour <jacques.latour@cira.ca <mailto:jacques.latour@cira.ca>> wrote:
>> Where do you delegate homenet to? Advanced DNSSEC validation may check for proper delegation?  
> 
> I think we should ask ICANN to set up an unsecured delegation of .homenet to the AS112 servers.   In order for names under .homenet to be validated by DNSSEC, it would be necessary for the validating resolver to have a trust anchor for any homenet on which it wants to do validation, and a means of differentiating between homenets so that it doesn’t use the wrong key to validate.   But that’s out of scope for this discussion: the point of this discussion is simply to figure out whether we want to do the hard thing or the easy thing: .homenet or home.arpa.

I suspect that this discussion has shown a certain amount of confusion on the subject of exactly how to make name resolution work as implied by what we know so far about what homenets will need to do, and that it might be beneficial to resolve the question in a way that will allow for relatively easy changes later.

Given that any resolver operator who wants to configure their local resolver with special-casing for the homenet default namespace (or any other) can do so, the interesting question is what behavior is expected from the public DNS for queries on the default homenet namespace— and who has to implement it.

Which solution (.homenet or .home.arpa) is easier to refine in light of future experience seems fairly obvious to me. 

Suzanne

v2.23.0 | Report a Bug | By Email