IETF Logo Mail Archive

[DNSOP] Re: An Interplanetary DNS Model

Scott Johnson <scott@spacelypackets.com> Wed, 24 July 2024 22:15 UTC

Return-Path: <scott@spacelypackets.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F5D5C157937; Wed, 24 Jul 2024 15:15:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EwLmmYsaRgqj; Wed, 24 Jul 2024 15:15:35 -0700 (PDT)
Received: from www.spacelypackets.com (www.spacelypackets.com [IPv6:2602:fdf2:bee:feed::ee]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48010C15152E; Wed, 24 Jul 2024 15:15:34 -0700 (PDT)
Received: from scott (helo=localhost) by www.spacelypackets.com with local-esmtp (Exim 4.96) (envelope-from <scott@spacelypackets.com>) id 1sWkEp-0006yf-03; Wed, 24 Jul 2024 22:13:35 +0000
Date: Wed, 24 Jul 2024 22:13:34 +0000
From: Scott Johnson <scott@spacelypackets.com>
To: Lorenzo Breda <lorenzo@lbreda.com>
In-Reply-To: <CAEhHO_PU0AhVjSKUDM_dPRxscnrJO8LuoROkmsAni=sOPU0JKw@mail.gmail.com>
Message-ID: <abb81b38-34cc-ef9e-3f5d-732054a2cc49@spacelypackets.com>
References: <65daf988-f696-4f35-5a72-5b11ef4893b8@spacelypackets.com> <CAEhHO_MaUFraCuur2uYEBrRcdKUty3ZwoPsFeP3V1iXf5vQxxA@mail.gmail.com> <b098f7cb-e42b-c7e4-56b8-dcb9125c17e9@spacelypackets.com> <CAEhHO_P4VmCC0VfxHRPdnvUzzwamMThbcuQAp1N98yWTCd-Bsg@mail.gmail.com> <0685c4ca-0b10-d7a8-ccd4-507dc6755d1a@spacelypackets.com> <CAEhHO_PbrkKqaJsBD+Fih+i1rY5YN+9=Y-fNUpOp2PfXL+hAuA@mail.gmail.com> <f5855742-810b-b10b-d83b-55ea64744975@spacelypackets.com> <CAEhHO_PU0AhVjSKUDM_dPRxscnrJO8LuoROkmsAni=sOPU0JKw@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="-2112415152-219623601-1721859215=:31297"
Message-ID-Hash: NSU75WLPT4PCHG5WLUBD4RW5FR7TPLCX
X-Message-ID-Hash: NSU75WLPT4PCHG5WLUBD4RW5FR7TPLCX
X-MailFrom: scott@spacelypackets.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: dtn@ietf.org, dnsop@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: An Interplanetary DNS Model
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/_AJAKACDQd_SXlQD91eeho-1Xaw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

Hi Lorenzo,

On Wed, 24 Jul 2024, Lorenzo Breda wrote:

> Il giorno mer 24 lug 2024 alle ore 22:24 Scott Johnson
> <scott@spacelypackets.com> ha scritto:
> 
>
>       > it would
>       > be break signatures (eg on API payloads and on emails,
>
>       Funny you should mention email, as I am in the process of
>       constructing a
>       working implementation in a dedicated multi-world simulation
>       network. I
>       don't see smtp to be so difficult.  The rest of the more
>       modern functions
>       tangental to smtp, like DMARC, smtps, etc. can come after
>       this return to
>       first principles.
> 
> 
> I'm mostly concerned about signatures for integrity check and sender
> identity check. PGP and its derivatives, for example (here in Italy we
> have the PEC system, a government standard to send emails with
> integrated integrity check, it would be broken).

Yay.  Now we are getting somewhere... a problem to be solved :)

Let me first consider the problem for a bit.  I will come back to you 
after a think on this.  I am assuming you want this integrity check to 
pass when emailing Italian assets on Mars, or when assets on the Moon are 
emailing you, and mangling the payload so the user can't click $BADLINK is 
the issue.  How do these email systems interact with external entities 
email systems?  As normal?  What happens to the integrity check if you 
were to send an email to my MTA, which does not support it?

You are suggesting that "leaving the current TLDs implicitly on Earth by 
default," as defined below, alleviates this problem?


>  
>       API payloads?  Via what delivery?  http(s)?  Not breaking
>       that would come
>       down to good parsing.
> 
> 
> Any delivery, with an integrity signature system.

Fair enough.  You want end-to-end integrity, which means no mucking with 
the payload, as doing so will break (non?) standardized cryptographic 
additions to smtp which are required by law in one jurisdiction?  I would 
need to understand the mechanism used beyond "emails are signed" to make a 
full analysis, but I see the issue.

>  
>       > and it wouldn't
>       > work on transmissions which are encrypted on a message
>       level (encrypted
>       > documents, emails).
>
>       Again, users who are encrypting messages will understand the
>       "country
>       code" analogy, IMHO.  It is rocket science, after all :)
> 
> 
> Still we'll present to the end user a possibly broken URI, exposing them
> to phishing and other nasty things.

Again, fair enough.

>  
>       >
>       > Why are you against leaving the current TLDs implicitly on
>       Earth by
>       > default?
>
>       Why do you think I am.  Just to be sure, can you expound on
>       what that
>       means, exactly?  Use only new, discrete TLDs on other
>       worlds?  I have no
>       problem with that.  I have already been willing to back off
>       a new TLD on
>       Earth because of the cost/paperwork/etc necessary.  Given
>       that we can map
>       3rd level domains to the same hierarchy to access off world
>       resources,
>       with no change necessary to the terrestrial DNS, it was a
>       technical
>       solution that worked and prevented having to run the ICANN
>       gauntlet
>       with a dump truck full of cash.
> 
> 
> If using local hierarchies is somewhat needed, I'll default the
> currently existing TLDs on the Earth, while defining new hierarchies for
> the other planets. "org." will be on the Earth, "org.mars." on Mars.

Let me run this through the mental simulator, and see if this breaks any 
other parts.  I agree that keeping universal uniqueness of TLDs is useful. 
That said, while retaining the original TLDs to Earth use only, many other 
TLDs would be available for use in the Martian DNS system.

This idea started out with complete, discrete implementations of 
"Internet", including dedicated DNS roots, on Mars.  Adjustments have been 
made along the way to trim off unnecessary replication.  It sounds like 
you have an idea which can perform such a trim.  I appreciate it!


> It
> would introduce some asymmetry, giving the Earth a special place, but
> Earth is indeed special.

Thanks,
Scott

> --
> Lorenzo Breda
> 
>

v2.39.1 | Report a Bug | By Email | System Status