Re: [DNSOP] [Doh] New I-D: draft-reid-doh-operator

Vittorio Bertola <vittorio.bertola@open-xchange.com> Mon, 11 March 2019 02:03 UTC

Return-Path: <vittorio.bertola@open-xchange.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E225130E2E; Sun, 10 Mar 2019 19:03:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=open-xchange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sOvudlyYrbU7; Sun, 10 Mar 2019 19:03:07 -0700 (PDT)
Received: from mx4.open-xchange.com (alcatraz.open-xchange.com [87.191.39.187]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B626E130E7C; Sun, 10 Mar 2019 19:03:05 -0700 (PDT)
Received: from open-xchange.com (imap.open-xchange.com [10.20.30.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx4.open-xchange.com (Postfix) with ESMTPS id 84E296A27C; Mon, 11 Mar 2019 03:03:03 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=open-xchange.com; s=201705; t=1552269783; bh=2x6sJEDk+y7MD5XWb5jMyeyXNdYOIJzmT+mH8ucIoRQ=; h=Date:From:To:Cc:In-Reply-To:References:Subject:From; b=rBk+70v/cWp51ZoHu6DVycMmR8okeu7530c8/vtyZ2+Hl8nTkcTxEks5cKlxjcM7h Sj5eKLbFcwPnyaoC+haiOjwTjWiySI6oQvS9TG9FyRzHv+siKtd5k6bu+omsOqEm2M eknFc86M6OPb8B28PpxVGLWjE8jodhmWOwNxRbmCbQIAssV/be10G5ZrC1ykxItUbG Pa6pT0LAAblg+ASEP30XvQ3A0Gktp9MYLOqXoiOAciMR7kR5GH4uJgCo/Vpp/LNT9E Qi0T7l6d3uoyzLGej+Y+JxSw/jzAoDI/sNoSVeyxyEVVo9WTdJ81aprTq9nmGbLyfF ywX3sac22Evfw==
Received: from appsuite-gw1.open-xchange.com (appsuite-gw1.open-xchange.com [10.20.28.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by open-xchange.com (Postfix) with ESMTPSA id 69B5A3C0734; Mon, 11 Mar 2019 03:03:03 +0100 (CET)
Date: Mon, 11 Mar 2019 03:03:02 +0100
From: Vittorio Bertola <vittorio.bertola@open-xchange.com>
To: Ask Bjørn Hansen <ask@develooper.com>, Warren Kumari <warren@kumari.net>
Cc: DoH WG <doh@ietf.org>, dnsop <dnsop@ietf.org>
Message-ID: <1615000186.12829.1552269783372@appsuite.open-xchange.com>
In-Reply-To: <3B3B491B-AF65-4121-A936-EC058D5143A4@develooper.com>
References: <155218771419.28706.1428072426137578566.idtracker@ietfa.amsl.com> <FACB852B-4BC4-4234-A728-9068708EFB10@rfc1035.com> <CAHw9_iKc5_i+rC-oOe3RJufFe_Jm3GmTN4UbQ6VLpcqodR8d9g@mail.gmail.com> <3B3B491B-AF65-4121-A936-EC058D5143A4@develooper.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_12828_1737723645.1552269783363"
X-Priority: 3
Importance: Medium
X-Mailer: Open-Xchange Mailer v7.10.1-Rev9
X-Originating-Client: open-xchange-appsuite
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/PwpQl7qRRG-T8MHfy6lncNCP86E>
Subject: Re: [DNSOP] [Doh] New I-D: draft-reid-doh-operator
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Mar 2019 02:03:10 -0000

> Il 10 marzo 2019 alle 20.15 Ask Bjørn Hansen <ask@develooper.com> ha scritto:
> 
> 
> 
> 
>         > >         On Mar 9, 2019, at 10:48 PM, Warren Kumari < warren@kumari.net mailto:warren@kumari.net > wrote:
> > 
> >         Also, I think that this topic would be better discussed in the DNSOP WG -  the DoH charter ( https://datatracker.ietf.org/wg/doh/about/) talks about:
> >         "The primary focus of this working group is to develop a mechanism that
> >         provides confidentiality and connectivity between DNS clients (e.g., operating
> >         system stub resolvers) and recursive resolvers."
> > 
> >     > 
>     I agree with this (and everything else you said).
> 
>     The new topics that are coming up all seem like they’d fit better in DNSOP or DPRIVE.
> 
For the sake of completeness, I will mention that I have also just posted a draft that tries to address the issues deriving from the adoption of encrypted DNS protocols, under the form of a best practice document for client applications:

https://mailarchive.ietf.org/arch/msg/dns-privacy/3ryu5BxcjRJO1-zeRXJaKIcIDUY

I decided that dprive was the right place for it, and I will briefly present it there, but I agree that the first discussion (even in a side meeting in Prague, if there is interest) would be where to deal with the topic within the IETF, and to which extent; it would make sense to have a single coordinated discussion rather than multiple parallel ones.

Regards,
-- 

Vittorio Bertola | Head of Policy & Innovation, Open-Xchange
vittorio.bertola@open-xchange.com mailto:vittorio.bertola@open-xchange.com 
Office @ Via Treviso 12, 10144 Torino, Italy