[DNSOP] Protocol Action: 'Aggressive use of DNSSEC-validated Cache' to Proposed Standard (draft-ietf-dnsop-nsec-aggressiveuse-10.txt)

The IESG <iesg-secretary@ietf.org> Thu, 08 June 2017 13:31 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: dnsop@ietf.org
Delivered-To: dnsop@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CE9D12EAF8; Thu, 8 Jun 2017 06:31:39 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: "IETF-Announce" <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.54.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: tjw.ietf@gmail.com, The IESG <iesg@ietf.org>, dnsop-chairs@ietf.org, dnsop@ietf.org, draft-ietf-dnsop-nsec-aggressiveuse@ietf.org, Tim Wicinski <tjw.ietf@gmail.com>, rfc-editor@rfc-editor.org, terry.manderson@icann.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <149692869930.14792.9367832744164720378.idtracker@ietfa.amsl.com>
Date: Thu, 08 Jun 2017 06:31:39 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Hzirx_o9XWZhQ01eWtd0Wy7Pu5c>
Subject: [DNSOP] Protocol Action: 'Aggressive use of DNSSEC-validated Cache' to Proposed Standard (draft-ietf-dnsop-nsec-aggressiveuse-10.txt)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Jun 2017 13:31:39 -0000

The IESG has approved the following document:
- 'Aggressive use of DNSSEC-validated Cache'
  (draft-ietf-dnsop-nsec-aggressiveuse-10.txt) as Proposed Standard

This document is the product of the Domain Name System Operations Working
Group.

The IESG contact persons are Warren Kumari, Benoit Claise and Terry Manderson.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-dnsop-nsec-aggressiveuse/





Technical Summary

This document specifies the use of NSEC/NSEC3 resource records to
allow  DNSSEC validating resolvers to generate negative answers within
a range, and positive answers from wildcards.  This increases
performance / decreases latency, decreases resource utilization on
both authoritative and recursive servers, and also increases privacy.
It may also help increase resilience to certain DoS attacks in some
circumstances.

Working Group Summary

Well reviewed by WG, nothing from the WG ML to suggest dissent.

Document Quality

Quality appears good.

Personnel

Document Shepherd: Tim Wicinski
AD: Terry Manderson; was Joel who hand-balled it to Warren, and he is an author..