From: "Sipos, Brian J." <Brian.Sipos@jhuapl.edu>
To: Scott Johnson <scott@spacelypackets.com>
Thread-Topic: [DNSOP] Re: [EXT] [dtn] Re: An Interplanetary DNS Model
Thread-Index: AQHa3q9d8baGjHKAHkWpMlYJ1fjHGLII+5+Q
Date: Fri, 26 Jul 2024 20:14:50 +0000
Message-ID: <20080798d3744898900d9e610f2b3568@jhuapl.edu>
References: <65daf988-f696-4f35-5a72-5b11ef4893b8@spacelypackets.com>
 <CAEhHO_MaUFraCuur2uYEBrRcdKUty3ZwoPsFeP3V1iXf5vQxxA@mail.gmail.com>
 <b098f7cb-e42b-c7e4-56b8-dcb9125c17e9@spacelypackets.com>
 <CAEhHO_P4VmCC0VfxHRPdnvUzzwamMThbcuQAp1N98yWTCd-Bsg@mail.gmail.com>
 <0685c4ca-0b10-d7a8-ccd4-507dc6755d1a@spacelypackets.com>
 <CAEhHO_PbrkKqaJsBD+Fih+i1rY5YN+9=Y-fNUpOp2PfXL+hAuA@mail.gmail.com>
 <41A7771E-8D08-4272-B457-F9FE61CD77A3@viagenie.ca>
 <358b7baa-d4f1-5f73-152b-768806efa0f3@spacelypackets.com>
 <bdd9f024fb884af9adfa115e2971b598@jhuapl.edu>
 <4d704bbc-a1ed-c089-af18-78cfbae08094@spacelypackets.com>
In-Reply-To: <4d704bbc-a1ed-c089-af18-78cfbae08094@spacelypackets.com>
Accept-Language: en-US
Content-Language: en-US
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature";
	micalg=SHA1; boundary="----=_NextPart_000_007E_01DADF76.9D86C0C0"
MIME-Version: 1.0
X-CrossPremisesHeadersFilteredBySendConnector: APLEX26.dom1.jhuapl.edu
X-OrganizationHeadersPreserved: APLEX26.dom1.jhuapl.edu
X-Proofpoint-Virus-Version: vendor=baseguard
 engine=ICAP:2.0.293,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16
 definitions=2024-07-26_12,2024-07-26_01,2024-05-17_01
Message-ID-Hash: 2IWI5WNYLPWV7LHHZIULBKYBXVP5OTCN
X-Message-ID-Hash: 2IWI5WNYLPWV7LHHZIULBKYBXVP5OTCN
X-MailFrom: Brian.Sipos@jhuapl.edu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency;
 loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0;
 nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size;
 news-moderation; no-subject; digests; suspicious-header
CC: Marc Blanchet <marc.blanchet@viagenie.ca>,
 Lorenzo Breda <lorenzo@lbreda.com>, DTN WG <dtn@ietf.org>,
 dnsop <dnsop@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: =?utf-8?q?=5BDNSOP=5D_Re=3A_=5BEXT=5D_=5Bdtn=5D_Re=3A_An_Interplanetary_DNS_?=
	=?utf-8?q?Model?=
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: 
 <https://mailarchive.ietf.org/arch/msg/dnsop/BqJatyyCIjYhd_DSXlrjXQpJ238>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

------=_NextPart_000_007E_01DADF76.9D86C0C0
Content-Type: text/plain;
	charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Scott,
Yes, new qualified names (identifiers) for new things will disambiguate =
from existing names. The important thing is to avoid a truly "split =
horizon" DNS situation where the same qualified name means different =
things in different contexts (the lack of specific records visible from =
a context is different than records with different meaning though). The =
DNS already provides a facility to have human-facing =
relative/unqualified names while the tools resolve to and manage =
qualified names, so there isn't a need for new terms or techniques here.

> -----Original Message-----
> From: Scott Johnson <scott@spacelypackets.com>
> Sent: Thursday, July 25, 2024 12:24 PM
> To: Sipos, Brian J. <Brian.Sipos@jhuapl.edu>
> Cc: Marc Blanchet <marc.blanchet@viagenie.ca>; Lorenzo Breda
> <lorenzo@lbreda.com>; DTN WG <dtn@ietf.org>; dnsop <dnsop@ietf.org>
> Subject: Re: [DNSOP] Re: [EXT] [dtn] Re: An Interplanetary DNS Model
>=20
> APL external email warning: Verify sender scott@spacelypackets.com =
before
> clicking links or attachments
>=20
> Hi Brain,
>=20
> Are you in concurrance that using new, dedicated TLDs only for off =
world use
> (and discrete to a single world) solves this issue?
>=20
> Thanks,
> ScottJ
>=20
> On Thu, 25 Jul 2024, Sipos, Brian J. wrote:
>=20
> > All,
> > I'm replying to a non-specific message in this chain just to mention =
that, similar
> to what Lorenzo brought up, any translation of identifiers (names or =
addresses)
> will be fraught with problems related to security and should not be =
done. There
> can be translation or mapping that happens in a way not visible to =
users/clients,
> but whatever identifiers are visible to the user/client need to have =
stable
> meaning across any network.
> >
> > Naming authorities, such as PKIX CAs, need to rely on the fact that =
once a user
> proves ownership of a specific identifier that same identifier will =
not be used by
> other users (at least not simultaneously over a short time interval). =
Part of the
> reason why public CAs such as Let's Encrypt will not issue =
certificates for IP
> addresses is the prevalence of IP NATs, even though IP identifiers are =
allowed by
> the CA/Browser TLS baseline [1].
> >
> > [1]
> > =
https://cabforum.org/working-groups/server/baseline-requirements/docum
> > ents/CA-Browser-Forum-TLS-BR-2.0.5.pdf
> >
> >> -----Original Message-----
> >> From: Scott Johnson <scott@spacelypackets.com>
> >> Sent: Wednesday, July 24, 2024 4:44 PM
> >> To: Marc Blanchet <marc.blanchet@viagenie.ca>
> >> Cc: Lorenzo Breda <lorenzo@lbreda.com>; DTN WG <dtn@ietf.org>; =
dnsop
> >> <dnsop@ietf.org>
> >> Subject: [EXT] [dtn] Re: [DNSOP] An Interplanetary DNS Model
> >>
> >> APL external email warning: Verify sender
> >> forwardingalgorithm@ietf.org before clicking links or attachments
> >>
> >> Hi Marc,
> >>
> >> On Wed, 24 Jul 2024, Marc Blanchet wrote:
> >>
> >>>
> >>>
> >>>       Le 24 juill. 2024 =C3=A0 11:42, Lorenzo Breda
> >>>       <lorenzo@lbreda.com> a =C3=A9crit :
> >>>
> >>>
> >>> Why are you against leaving the current TLDs implicitly on Earth =
by
> >>> default?
> >>>
> >>>
> >>> Right. One do not need a special TLD for space. We can use what we
> >>> have and it just works fine.
> >>
> >> I do not disagree with this notion as respects my proposed =
architecture.
> >> 3rd level domains mapped to off-world domains works just fine, for
> >> the low low price of annual domain renewal.  a tld representing =
each
> >> remote world is preferable, however, because it is just "cooler;"
> >> easier to use and more memorable than a much longer domain.  This,
> >> however, assumes we are talking about the same proposal, which we =
are
> not.
> >>
> >>> One has just to be careful on remote resolution so that it =
contains
> >>> what is needed: trust chain, local names, ...
> >>>
> >>
> >> Lets be clear here, Marc.  You are talking about a completely
> >> different solution than I am; one predicated on IP only.  Your
> >> comment on this thread, without context, only serves to confuse the =
other
> participants.
> >>
> >> For example, you are talking about using F-root, right?  That is a
> >> very different thing than the functionality which I am describing,
> >> with significantly more network resource usage requirements.  My
> >> solution uses BP in some network segments.  Personally, I don't =
think
> >> your method will ever fly, primarily due to security reasons, but I
> >> don't troll your threads about it in a manner which would muddy the
> >> waters of those considering your proposal.  I don't mind healthy
> >> competition of ideas, but I do expect fair play.  If you wish to
> >> contrast the two methods, thats fine, yet unproductive, IMHO.  Just =
make
> sure the reader knows you are talking about your proposal, and not =
mine.
> >>
> >> ScottJ
> >>
> >>
> >>
> >>> This is discussed in:
> >>> - running IP in deep space (noBP<->IP):
> >>> https://www.ietf.org/archive/id/draft-many-deepspace-ip-asse
> >>> ssment-01.txt
> >>> - running DNS in remote places:
> >>> =
https://www.ietf.org/archive/id/draft-many-dnsop-dns-isolated-networ
> >>> k
> >>> s-01.txt
> >>>
> >>>
> >>> Regards, Marc.
> >>>
> >>>
> >>>
> >>> --
> >>> Lorenzo Breda
> >>> _______________________________________________
> >>> dtn mailing list -- dtn@ietf.org
> >>> To unsubscribe send an email to dtn-leave@ietf.org
> >>>
> >>>
> >>>
> >>>
> >

------=_NextPart_000_007E_01DADF76.9D86C0C0
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
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------=_NextPart_000_007E_01DADF76.9D86C0C0--