Re: [DNSOP] Murray Kucherawy's No Objection on draft-ietf-dnsop-dns-zone-digest-12: (with COMMENT)

"Wessels, Duane" <dwessels@verisign.com> Fri, 09 October 2020 21:27 UTC

Return-Path: <dwessels@verisign.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A27FA3A0D46; Fri, 9 Oct 2020 14:27:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CEfLaraou2zW; Fri, 9 Oct 2020 14:27:27 -0700 (PDT)
Received: from mail2.verisign.com (mail2.verisign.com [72.13.63.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6DEC93A0D3F; Fri, 9 Oct 2020 14:27:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=8566; q=dns/txt; s=VRSN; t=1602278847; h=from:to:cc:date:message-id:references:in-reply-to: mime-version:subject; bh=RvMcKWsbXwF6iQwzXREkWlOssdNpO0pTj4jHomQHd60=; b=NrKMDu5gpp6YO//QN8s/C7A5P1CFjWmlm4M38N9S9XtJdczdt/xEJKoI g6my/qyQtdKtkKoK4LC7ny5VuPcec/wKDtFvc1zXcyA/79gMpcrzo0FVQ LJ1cAi3CbxgsEVdBKlhdrdCib2GeGDY+rK1vT6eP6UMkBQY6euOILTQsx 3Rf5fwiPYvAzgIBtGrvfFi37usfoWzgRwWzmtzRPvO7BBs36fbQVyRWLf 6XDuqPRR/ln8DZXjWlApTLO4C7y1UMCdh4CriYTTCF1hu6/92VsVmJ9Z2 haUqOBL8nidEvHu2fIDrttDmDNj9HTHmuOXlwjsQV+o6J+YM4XvF6Q4ur Q==;
IronPort-SDR: OCxQtgxqo78Efu2gHw/F3JxZFUb5ymFAyjPQ9S0yW03gB8Zhz1f+jwgAk2mLwYmvZfGR/CgVKC i5Hz01A9dRGZanpcvV40MmAtH+7luZHHraeLu28CVc4mVCSZRlIX6cUgAXpkCAdBQaRAFq+C6/ EBDGjdE3uR06MiseF6+u9RdpBPnDDPN99/TFhZzQElu9TKeoiKe+3nzOILO2y1Mtq9oDl1GwWP E5p64R6cmL9edaxvx6dutuTR/AkG7EYCCVErtJalJwIn7GrO1gc/VvN1JtFk/V3cOavwLHiTK0 5Ao=
X-IronPort-AV: E=Sophos; i="5.77,356,1596499200"; d="p7s'?scan'208"; a="2732096"
IronPort-PHdr: =?us-ascii?q?9a23=3AmNig5xPc8r+dOi+u1Psl6mtUPXoX/o7sNwtQ0K?= =?us-ascii?q?IMzox0K/7+rsbcNUDSrc9gkEXOFd2Cra4d1KyL6uuxCSQp2tWoiDg6aptCVh?= =?us-ascii?q?sI2409vjcLJ4q7M3D9N+PgdCcgHc5PBxdP9nC/NlVJSo6lPwWB6nK94iQPFR?= =?us-ascii?q?rhKAF7Ovr6GpLIj8Swyuu+54Dfbx9HiTagY75+NhW7oRjeusQSgoZpN7o8xA?= =?us-ascii?q?bOrnZUYepd2HlmJUiUnxby58ew+IBs/iFNsP8/9MBOTLv3cb0gQbNXEDopPW?= =?us-ascii?q?Y15Nb2tRbYVguA+mEcUmQNnRVWBQXO8Qz3UY3wsiv+sep9xTWaMMjrRr06RT?= =?us-ascii?q?iu86FmQwLzhSwZKzA27n3Yis1ojKJavh2hoQB/w5XJa42RLfZyY7/Rcc8fSW?= =?us-ascii?q?dHQ81fVTFOApmkYoUPEeQPIPpYoYf+qVsArxSwAgisC//gxTJTiX/6wag63v?= =?us-ascii?q?4hEQ3awgAtGc8FvnTOrNXyMacfSe65w6nWwjXYdPNZxzP96JPQfhs8r/+MQK?= =?us-ascii?q?h/cczPxkUhCgjIiUifqIL7MDOOzeQCrWyb7/F7WOKxlWEnsQBxoiOuxscjjI?= =?us-ascii?q?nFnJ4aylfB9Shgxos+ONK3RlJhb9G+DJtQqz+VN5FwQs46XWxluiY0x6MYtJ?= =?us-ascii?q?O1eCUH1IkqywPfZvCaboWG4g7uWuiPLDp2in9ofK+ziwi9/0Wj1uHxVde53V?= =?us-ascii?q?JUoiZbktfCtnYA3AHd5MiAT/ty5Eah2TCX2gDS8O5EJ1o7mbDcK547zb49kI?= =?us-ascii?q?cYv0fbHiLuhUn6kLWaelgm9+Wm8ejrf7Xrq5GGO4J7jgzyKrkiltClDeglMA?= =?us-ascii?q?UCQ3KX9fmz2bDg50H1XbZHg/srmafDqp/aP94UpquhDg9Q1YYs9giwAi+90N?= =?us-ascii?q?QdgXkHNFVFeA+bj4TxO1HBPvT4DfCnjlmxjDll3+3KMb35DJvCL3fPjKntca?= =?us-ascii?q?xj60FAzwoz18hf64hOBb4cOv7zRFXxtMfeDhMjLwO0xOPnBM181oMYR22PHr?= =?us-ascii?q?eUPL7OvVOS++4iIeeBaJUItDv9JfUp/fHjgHshlV8YZ6ap3J8XaH6iHvRhJk?= =?us-ascii?q?WUeWfjg9kfHmcRpQoxUujqiEaZXD5NeXmyRaM85io6CIKpC4fPXJyigLuE3C?= =?us-ascii?q?ujBJ1ZenhGCkyQEXfvb4iEQOoMaDqMLc97jzwETqauS5U62BGhsQ/10btnLu?= =?us-ascii?q?7O9iIEspLj0cB/5/fPmhEq6Tx0E8Od3nmMT25qhWMISCQ73KFhrkxhxFePy6?= =?us-ascii?q?94g+ZXFdZL/fNGTh86NYLAz+x9E939RxjBcc2HSFa6W9mmAC8+Ts4/w9MXfk?= =?us-ascii?q?l9Hc6ijhfb3yazHrAVkaeLCIU186Lb2Xj+Od9xxGvH1KkukVYmWddPOHanhq?= =?us-ascii?q?Fh6wjTCZTFk0KDl6alba4cxjLC9H+fzWqSu0FVSBN/UaPeXXAYfkvatMj25k?= =?us-ascii?q?PYQL+vE7QnKRBMyc+cJatWZN3ll1JGRO3sON7GeWK+h3+wBQqUxrOLdIflZm?= =?us-ascii?q?Md3D7aCEgciA0T/GiJNRQwBiu7pGLeFjNuH0r1Y0zw6el+tG+7TkgswgGWbU?= =?us-ascii?q?1g2aC5+h8LivyARfMexb0EuCI7pDV1GFaxxc7ZC92Fp1kpQKIJRM4n+l5WnU?= =?us-ascii?q?HEvAxwJJW/Pug2nUMGfh5qpE70/xpyA4RE18MtqSV54hB1LPfS715abD6cxt?= =?us-ascii?q?S4FqDeLGS4tESjdKPNwVzay/6I970O8/U3rRPouwT/RRlqyGluz9QAiyjU3Z?= =?us-ascii?q?7NFgdHFMupCks=3D?=
X-IPAS-Result: =?us-ascii?q?A2FCAAAR1YBf/zGZrQpgHAEBAQEBAQcBARIBAQQEAQFAg?= =?us-ascii?q?T0FAQELAYMZLIEICpUnJoN6li+BfQQHAQEBAQEBAQEBBAQBJQoEAQEChEgCg?= =?us-ascii?q?hUmNgcOAgMBAQsBAQEFAQEBAQEGAwEBAQKGRQyCNykBc4EDAQEBAQEBAQEBA?= =?us-ascii?q?QEBAQEBAQEBARYCMlRDAQEBAQIBdAUFCwIBCA4KIwsCMCUCBA4FDoMYAYJcE?= =?us-ascii?q?R6oUXSBNIpQCgaBOAGBUot9gUI+gREnDBCCTT6CXASBXINLgi0EkB+CZQGkV?= =?us-ascii?q?QMHgmiES4JfjjaFCh+DE4oIkWuCMK9dg2ACBAIEBQIVgVsFggZwFTsqAYI+P?= =?us-ascii?q?hIXAg2OVohOhUJ0AjUCBgoBAQMJjTeBEQEB?=
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1979.3; Fri, 9 Oct 2020 17:27:24 -0400
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%4]) with mapi id 15.01.1979.003; Fri, 9 Oct 2020 17:27:24 -0400
From: "Wessels, Duane" <dwessels@verisign.com>
To: Murray Kucherawy <superuser@gmail.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-dnsop-dns-zone-digest@ietf.org" <draft-ietf-dnsop-dns-zone-digest@ietf.org>, "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, "dnsop@ietf.org" <dnsop@ietf.org>, Tim Wicinski <tjw.ietf@gmail.com>
Thread-Topic: [EXTERNAL] Murray Kucherawy's No Objection on draft-ietf-dnsop-dns-zone-digest-12: (with COMMENT)
Thread-Index: AQHWnT/1Xg26nC+UgEGoylrI7CJ/jKmQDoKA
Date: Fri, 9 Oct 2020 21:27:24 +0000
Message-ID: <280E9084-3819-4F5C-A521-9883F7764D94@verisign.com>
References: <160214010366.16024.12532252739120956721@ietfa.amsl.com>
In-Reply-To: <160214010366.16024.12532252739120956721@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.120.23.2.4)
x-originating-ip: [10.170.148.18]
Content-Type: multipart/signed; boundary="Apple-Mail=_4E42B0D2-61F5-458B-9834-A0C73FEA6BD1"; protocol="application/pkcs7-signature"; micalg=sha-256
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/b7X8cLX8pQCWoRWz9WZz6R8TPH0>
Subject: Re: [DNSOP] Murray Kucherawy's No Objection on draft-ietf-dnsop-dns-zone-digest-12: (with COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Oct 2020 21:27:29 -0000


> On Oct 7, 2020, at 11:55 PM, Murray Kucherawy via Datatracker <noreply@ietf.org> wrote:
> 
> Murray Kucherawy has entered the following ballot position for
> draft-ietf-dnsop-dns-zone-digest-12: No Objection

Hi Murray, thanks for the comments. 


> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> I support Benjamin's DISCUSS about the IANA issues.  I'd also suggest adding
> text about what the possible values of the "Implementation Requirement" column
> are and what they mean.

Based on the discussion with Benjamin that column has been dropped.


>  Further, what's the "Mnemonic" used for?  That word
> appears nowhere in the document other than in the column headings in this
> section.

I assumed that was relatively standard thing in protocol registry tables.
It probably came from using the DNSKEY algorithm registry as a model.
https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml#dns-sec-alg-numbers-1



> 
> Roman made some other good editorial suggestions.  Please check those out.
> 
> Section 3.3.1 says: "SIMPLE is a good choice for zones that are small and/or
> stable, but probably not good for zones that are large and/or dynamic." 
> There's no alternative presented for large/dynamic zones.  Are there plans to
> develop such a thing?

I have some ideas that I have shared on the DNSOP list and in some
presentations about zone digests.  Others probably have ideas as well.
Nothing is to the stage of being written down as an Internet Draft yet,
as far as I know.

DW