[DNSOP] Re: Operator Automated Information Sharing
"Hollenbeck, Scott" <shollenbeck@verisign.com> Fri, 06 June 2025 12:25 UTC
Return-Path: <shollenbeck@verisign.com>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id CB51831BF241 for <dnsop@mail2.ietf.org>; Fri, 6 Jun 2025 05:25:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -4.398
X-Spam-Level:
X-Spam-Status: No, score=-4.398 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jl-Z3l4mdE_R for <dnsop@mail2.ietf.org>; Fri, 6 Jun 2025 05:25:08 -0700 (PDT)
Received: from mail6.verisign.com (mail6.verisign.com [69.58.187.32]) by mail2.ietf.org (Postfix) with ESMTP id 8593331BF239 for <dnsop@ietf.org>; Fri, 6 Jun 2025 05:25:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=1687; q=dns/txt; s=VRSN; t=1749212708; h=from:to:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version:subject; bh=z86360HLYm3oI9Q4KVTPYWeN37QyrIICBSxBZN+rTlI=; b=ZtLglTS3N3ZmQIFqqTkBjQvMcABGaZilwVWBN0RZCFOwA5j3OiL5p9C9 SJiJ++ciXATdi1HM+FeMVOuqikRZI9meCfR+II++T5ZnUCH/nvjVaJm3m wqFoe/lPlWPB4gmn+HrSuFdAsmAFfhRabVKT4IQh6cOA6KUSspJG8+nnt nerJhKeAgHbcXVjrjWOibqK4mrUQHIqfEEiQagqXAmoHoPDHnXakd2CnB Xhmk+LVSc9D13v+6o/GO2byFb5af2FJscu3Ym4HvN82VLLdT+9gejztxz 4YLpX30rAH797yzElzLSG5voZGTQ3xODsr2CW1piD59gsj1ehTtZp0TaX g==;
X-CSE-ConnectionGUID: 0kJNphWsTua70z/J6QYCqg==
X-CSE-MsgGUID: yGD3o/eLR3m7apHjW7bInA==
X-ThreatScanner-Verdict: Negative
IronPort-Data: A9a23:uYpowa6QDPv0A8Fhj10CvwxRtD7GchMFZxGqfqrLsTDasY5as4F+v mdJXm6PPa2KZmT3c4t1OYzi9kwC7ZXdxtZmGVRppCA8Eysa+MHIO4+Ufxz6V8+wwm8vb2o8t plDNYOQRCwQZiWBzvt4GuG59RGQ7YnRGPykTrSCY3krLeNdYH9JoQp5nOIkiZJfj9G8Agec0 fv/uMS31GWNglaYCUpKrfvdwP9TlK6q4m5A4ARgPawjUGL2zBH5MrpOfcldEFOlGuG4LsbiL 87fwbew+H/u/htFIruNjrbhf0QWdaXZNA6Ih2A+c/DKbs9q/3FaPg4TbZLwWG8P49m7t4kZJ OZl7PRcfTwU0pjkw4zxZTEDSn0jYvcWkFPwCSPXXcS7lyUqelOym6k+VBle0Ycwoo6bCkkWn RAUxaxkgrluSItazZriItSAiPjPI+GzP6E5onFf1g3EBKl+U9fhHZz7zsZXiWJYasBmRZ4yZ uI8SB5ANSvmTi0XYBEJA5UkhKGhij/haSZe7lmSoMLb4UCKlEorjOaraYePPIbRLSlWth/wS mbu5GT+BhUXMtaSwjmt7H+2h/TOkiW9U4UXfFG93qU62wLOnTVDYPEQfUqUjaK+zUOaYYlad EUM2igR8qIT8mX+G7ERWDX9+hZopCU0WtdMHcU86RGIw6XV6ECSAW1sZjJHc9s+nM47WTJs0 UWG9+4FHhRqsbmaEG2b+6fM93apJzJMa2oDfmoOSk0E59a65p8plRSJRdFmeEKosuDI9fjL6 2jihEADa3871KbnC43TEYj7vg+R
IronPort-HdrOrdr: A9a23:iCD2va/PtKiK8b6dpZVuk+AFI+orL9Y04lQ7vn2ZLiYlF/Bw9v re/sjzuiWVtN98Yh8dcLO7V5VoKEm0naKdirNhXotKMjOGhEKYaK9v6of4yyDtFmnU5odmuZ tIQuxbBMfrBVZ3yeT38GCDeeoI8Z2i/LqzjenTi01xSxpnApsM0y5iBh2FHlZNSA5KOJo8GP OnjfZ6mw==
X-Talos-CUID: 9a23:riP4S2mEQ0WJmpxf71o8ULITOUXXOSXe7lHII3CjNXtgF+WHDn3OwZJPisU7zg==
X-Talos-MUID: 9a23:JosOtAYaIbR+MOBTphDA3zYlOeNSuKHxAVgtk6pZseiCHHkl
X-IronPort-AV: E=Sophos;i="6.16,215,1744070400"; d="scan'208";a="38375318"
Received: from MILG1WNEX02.vcorp.ad.vrsn.com (10.246.152.23) by MILG1WNEX02.vcorp.ad.vrsn.com (10.246.152.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1748.10; Fri, 6 Jun 2025 08:25:07 -0400
Received: from MILG1WNEX02.vcorp.ad.vrsn.com ([10.246.152.23]) by MILG1WNEX02.vcorp.ad.vrsn.com ([10.246.152.23]) with mapi id 15.02.1748.010; Fri, 6 Jun 2025 08:25:07 -0400
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: "ietf@nixmagic.com" <ietf@nixmagic.com>, "dnsop@ietf.org" <dnsop@ietf.org>
Thread-Topic: [EXTERNAL] Re: [DNSOP] Operator Automated Information Sharing
Thread-Index: AdvWOvaC7DeiuUQyS0Cq/Eo2oTmq0wAtFA+AAARa+HA=
Date: Fri, 06 Jun 2025 12:25:07 +0000
Message-ID: <f7c4351eeb5f4ce1ae20ab1ade38a6ae@verisign.com>
References: <116f7986dd7847ae960494a47f58cee7@verisign.com> <2796676.DJtZmZ5C2v@workstation.vm.ideapad.lan>
In-Reply-To: <2796676.DJtZmZ5C2v@workstation.vm.ideapad.lan>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Message-ID-Hash: TK4DCRMJMCPOVTBIOTOHTD3IT655CZ6B
X-Message-ID-Hash: TK4DCRMJMCPOVTBIOTOHTD3IT655CZ6B
X-MailFrom: shollenbeck@verisign.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: Operator Automated Information Sharing
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/MVjZn-j2z2nzAfcirntka02gPSg>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
> -----Original Message----- > From: Michael De Roover <ietf@nixmagic.com> > Sent: Friday, June 6, 2025 6:29 AM > To: dnsop@ietf.org > Cc: Hollenbeck, Scott <shollenbeck@verisign.com> > Subject: [EXTERNAL] Re: [DNSOP] Operator Automated Information Sharing > > Caution: This email originated from outside the organization. Do not click links > or open attachments unless you recognize the sender and know the content is > safe. > > On Thursday, June 5, 2025 6:58:49 PM CEST Hollenbeck, Scott wrote: > > I'd like to see if any recursive resolver or authoritative name server > > operators are interested in identifying, implementing, and testing > > automated technologies that allow us to share operational data in near > > real time. The idea is to gain early awareness of anomalies, changes > > in server status, changes in zone status, etc. with a goal of > > improving resolution resilience by addressing issues quickly. > > > Is anyone interested? Please let me know and we'll figure out how to > > proceed. > > > Thanks, > > Scott > > Hi Scott, I've had a bit of a brainstorming session about these ideas. Here's what > I've expanded it into so far. > > > changes in server status > - status of service / network? > - shared via init or service itself? > > > share operational data in near real time > - zone transfer? > - BAF/TCSP classification? > - ICANN's CZDS service? > - privacy vs. public data? > - proof of server authenticity? > > > improving resolution resilience > - shared zone files? > - distributed like DHT? > - SLA necessary? where/why? [SAH] Thanks, Michael. It's still early, so ideas are welcome. Scott
- [DNSOP] Operator Automated Information Sharing Hollenbeck, Scott
- [DNSOP] Re: Operator Automated Information Sharing Michael De Roover
- [DNSOP] Re: Operator Automated Information Sharing Hollenbeck, Scott
- [DNSOP] Re: Operator Automated Information Sharing Willem Toorop