IETF Logo Mail Archive

Re: [DNSOP] Working Group Last Call for Revised IANA Considerations for DNSSEC

Joe Abley <jabley@hopcount.ca> Thu, 12 August 2021 17:25 UTC

Return-Path: <jabley@hopcount.ca>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 64C643A43B8 for <dnsop@ietfa.amsl.com>; Thu, 12 Aug 2021 10:25:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=hopcount.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zKewZH90MZFe for <dnsop@ietfa.amsl.com>; Thu, 12 Aug 2021 10:25:41 -0700 (PDT)
Received: from mail-qt1-x830.google.com (mail-qt1-x830.google.com [IPv6:2607:f8b0:4864:20::830]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47AB13A43B0 for <dnsop@ietf.org>; Thu, 12 Aug 2021 10:25:41 -0700 (PDT)
Received: by mail-qt1-x830.google.com with SMTP id b1so5908032qtx.0 for <dnsop@ietf.org>; Thu, 12 Aug 2021 10:25:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hopcount.ca; s=google; h=content-transfer-encoding:from:mime-version:subject:date:message-id :references:cc:in-reply-to:to; bh=8oNGU8ldglu6KqDyGkeMxboM1wH2bwZGCKMXD1EY6Nk=; b=EpPLjNo87mO/WbRYgoRNCXuUs6/011LTe7cg/6tlHRByIcNfMvH+jFaS2eZSxnAMCC AWjy2f+w+bwbB9sbCz+EmRIgn9nUVw99U0p/evFUKcQmH+COHbL89yJEAfZuW1oLcCZ9 ulQSTumH15r6eSQVzPpb7u12v5/KY+rt86Yo8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:content-transfer-encoding:from:mime-version :subject:date:message-id:references:cc:in-reply-to:to; bh=8oNGU8ldglu6KqDyGkeMxboM1wH2bwZGCKMXD1EY6Nk=; b=M85vUQpgRiYSocNeyz8rMJ0JyjR72Scc17sa+gZh+Z4Ro6NuV7SxN/3dY77p4E8yOA qBI0KNU7AMwheZlk2sh3RcSo3+dojcruwEkat/HnE4e17/NbgtoYkgDJUooVzXpkX+5F tYuLV3rSK9ySRNx5/BT1fERtEGmAXoyMPiyeo19kzRnu2jHoelI+I9jqFI2SE4toib3e KPGJHIh4Wb2yQKWcNACsIUpLErDGlR2oAG28EsGOaZYqXuAW+h/l/SdL371gh025fZ2I tfN286cmRIg6Q0YtD2XlArmA3K7nvGUwR0G6U+KdCwQvaFNFc2HTdC6BdLw9G2NiYqOL F7nA==
X-Gm-Message-State: AOAM532FcPvegMhrZFJaSzvuDMf+NhEwIZPofgUdIjT+gWnZEaZbTbiN vPcC4RtOWjXF0zdnTE2OEHCNPg==
X-Google-Smtp-Source: ABdhPJx3vtQGwpTnUQnJBhg0zBNiL4v2NQq0uwUbnAiUSVGHAWVzIsFsi03gmkmRYKBJbu/pEiIN0A==
X-Received: by 2002:ac8:7489:: with SMTP id v9mr4902020qtq.9.1628789139495; Thu, 12 Aug 2021 10:25:39 -0700 (PDT)
Received: from smtpclient.apple ([2607:f2c0:e784:c7:f5dc:84ca:9ddc:edd8]) by smtp.gmail.com with ESMTPSA id w6sm1395445qto.86.2021.08.12.10.25.38 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 12 Aug 2021 10:25:38 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Joe Abley <jabley@hopcount.ca>
Mime-Version: 1.0 (1.0)
Date: Thu, 12 Aug 2021 13:25:37 -0400
Message-Id: <2A137295-D5FC-4FDA-9270-88FEF9A60265@hopcount.ca>
References: <7216daac-3446-3481-a358-d1b11c92a2d@nohats.ca>
Cc: Olafur Gudmundsson <ogud@ogud.com>, Tim WIcinski <tjw.ietf@gmail.com>, dnsop <dnsop@ietf.org>, dnsop-chairs <dnsop-chairs@ietf.org>
In-Reply-To: <7216daac-3446-3481-a358-d1b11c92a2d@nohats.ca>
To: Paul Wouters <paul@nohats.ca>
X-Mailer: iPhone Mail (18G82)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/IdnydwP3-XHGRBhP6FSZ4bcIX1k>
Subject: Re: [DNSOP] Working Group Last Call for Revised IANA Considerations for DNSSEC
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Aug 2021 17:25:48 -0000

On Aug 12, 2021, at 10:57, Paul Wouters <paul@nohats.ca> wrote:

> On Thu, 12 Aug 2021, Olafur Gudmundsson wrote:
> 
>> The DS record is a unique record that it lives only at the parent side of delegation, when DNS was defined no such records were
>> envisioned, if more are needed this working should take up a new work item to 
>> define a sub-set of the RRtype number space as Parent side-only to have a proper debate on the topic. 
> 
> This would have been excellent to do when we did DS. It would still be
> good to do this now, I agree. But it would be too late for some of the
> things discussed now.

Can you talk more about why you think so?

Support for novel interpretations of particular DS algorithms will require support on both the provisioning and consumer side. Is it really that much more work to specify new DS-like RRTypes? 

There's truck-roll in both cases. Neither path is really going to make these features generally available any time soon.


Joe

v2.23.0 | Report a Bug | By Email