Re: [DNSOP] Is DNSSEC a Best Current Practice?
Stephen Farrell <stephen.farrell@cs.tcd.ie> Thu, 10 March 2022 19:15 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A1123A1B72 for <dnsop@ietfa.amsl.com>; Thu, 10 Mar 2022 11:15:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, NICE_REPLY_A=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EHC4WTYQsh-Y for <dnsop@ietfa.amsl.com>; Thu, 10 Mar 2022 11:15:35 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-ve1eur01on0730.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe1f::730]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 914A33A1B5F for <dnsop@ietf.org>; Thu, 10 Mar 2022 11:15:34 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jtXZCncH6pgihQ4wVEMW/4fi2WirkY6ve+b+DRa+VMTi5qFmU5O4BTHLJyuo9xWJwiEqKl2NJguwAVDjhJzP0QmoUhrO8reeMBZWCdHAbSa82wx1P4Yy0hZp4fd4da2F6JKb6NjmBn6dV5HtMK+foPxiRBJJSylQee1HSJ8r8tQ/iEWJd2WW9BxBrJ1hZX+REuYbLmSeU11D5tASbPCDBz5xj8YkyFXy8VuCF+MdAzaFO4Q1sD9gyhpE6daoCaj1h0mNE8gCE2kDoE3JQxZlqqDWbX2zz5RjDPkOHhuVDYcIHkEijeiRtm2kPwvfT1d1cPyrXMnGBI57oXzbDDTPOA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=t1msZQUvtmCIfLUUMK1mtb29mOp9VcspwxWeAo9N4UM=; b=gqzYKW5kEmccROR/TS/253NHyFsxw18MtH9zhwjkvZdyn40I8bVHOqzTXoGUsj1mF+NY1KqYGlCstuGocJIb/VttVVBcj4zHX2WbtYGK12WWaWPXM9lS32a7vSGDdzoor5W2cPYtl7qDX0SWbSS0ffKyfV3GchhLFkI6rGyF6OCF2TPa+A+zfidAcdMIQqAT+EQqd/ypW0VuEx7rYoWyEUeiyxhjDDHKCV48F49320vnRVa6TfKSNhoZ+6wyqWSvnSFhAi6w1CsBRR3X3M6kiu3kNeCCs05opCOZvZ1Vr+16XF4CHjwFA1mTbh07Xf2PcIhge2f/Zt84FZregtEXng==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=t1msZQUvtmCIfLUUMK1mtb29mOp9VcspwxWeAo9N4UM=; b=YGPhvyBOjayRkWUF5jwp4OVG9lBf95T2V+UCUK73AX+Llp0K1yklcqYmlp59h0mGEzNalAYLw4Zz3v3IphxWe+6ky5/zdcGrDl6Y4UMpSJZcqPfMv1DZfk9DuYyyR04ChzFwTi6AOdkRhMrZuhoRVZ/E40c4GfZZy1s6fbMhX+AZGcLsMlLWaQLjAE/ifPWuDG05Rfg3D9xLvMuSPBYTR87UAY0Hm9IUnvlhTD06FL3XHnkJML/kRnAcD9/Jkr8+T9h7KFh5yJ1Rv5Sm8J2/xhlrgySaEasHapCD02z7iiGL1Q2K5EqR67N2Vt6121sqCwSQwDdxuwLEqjcz92EaRw==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by AM6PR02MB3909.eurprd02.prod.outlook.com (2603:10a6:20b:4f::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5061.22; Thu, 10 Mar 2022 19:15:28 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::d814:ffb7:9500:d217]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::d814:ffb7:9500:d217%4]) with mapi id 15.20.5038.027; Thu, 10 Mar 2022 19:15:28 +0000
Message-ID: <aec9592d-ddbc-c006-8d40-c60a91ef93ea@cs.tcd.ie>
Date: Thu, 10 Mar 2022 19:15:26 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.5.0
Content-Language: en-US
To: Paul Wouters <paul@nohats.ca>, Paul Hoffman <paul.hoffman@icann.org>
Cc: dnsop WG <dnsop@ietf.org>
References: <88A0AA7A-01B8-4C7E-9A9A-1FB29C9FB18B@icann.org> <98EAB1A0-9746-4BAF-8865-1F28A3CBB6A4@nohats.ca>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
In-Reply-To: <98EAB1A0-9746-4BAF-8865-1F28A3CBB6A4@nohats.ca>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------OaDVBFZnlhIlfKXRJpQCCYmO"
X-ClientProxiedBy: DB6PR0802CA0046.eurprd08.prod.outlook.com (2603:10a6:4:a3::32) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: b2e6860f-fe6c-4c5f-1db7-08da02ca5686
X-MS-TrafficTypeDiagnostic: AM6PR02MB3909:EE_
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <AM6PR02MB3909AD2FCD8F769274D98591A80B9@AM6PR02MB3909.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(44832011)(5660300002)(110136005)(2616005)(83380400001)(966005)(36756003)(21480400003)(38100700002)(235185007)(8676002)(6486002)(31696002)(786003)(66946007)(8936002)(316002)(31686004)(33964004)(508600001)(86362001)(6506007)(66476007)(66556008)(4326008)(186003)(2906002)(53546011)(6512007)(45980500001)(43740500002); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: vu3awG7mU/vcY0K86xus6wbESgHRh6+KfMVA3+fyOq8KyF+W5MQ4SZ1v6ZfH9hL/QmgyEl4eliH/S/7/hIl8e5lGXmKxb0Aalw9aqReBA74vUPt2H1F7Yt+HBSzBe17cnNZrEoa0cy/thPEsAGZkC5RWyULO5W8NAT30aCvk4J3AlekGHrRQc6WgjaYcuLw7GdENqNQC+2fWUQ/0KPpL7IvKHoeK5g66E8oSvyLhyHyWg/t/JncSIOieC1iE66/XPX0x6v/+q5BSEXAohEHXeYnQ/Xz8eiP5lUrBzuSXVj5LahbXPHTxyqZ6/mm+4wHqsIYgGOl9iGYSYCWQr4Cf+KzrgVvfmFrXai+IfxlBB5Q60qPRc7J7IwVEaArBb1ZFJE2Tq4J0MdF2lZfl1Pg4vjkpt/x2c3oHOFba3JIcsoXDQkgjkfBCHVxFrk6/MKuff+lI0u/lLtO4dfe4KdyXtPW1ffsVuRxgGJqK3N4h2cQJgqdKSYqeJa6RegCsvVowZQj0eQPFU/lW5f+PppuEZ6dGVmm0lUor8eLjvtZjeIJsROEmD+LGHdW30u7HkA1xyY8YE6dlhnhmk/ULXMkTK8IjwOZZotRZ0JFniTzU9eBqiphvkf2H/pCI3dV86l6VS4NL3nxfTSrRZma+GNAhQkrZmfqn+ppxGyGQYyW1bNhoBAXYdmyMJThU+Zo/nie6e1YVDt9jcWGgX1co8EOskclbfggwpvLQ5LZqZV+rN0ldqt1D/V87U8dLnDz6gPxyfQs2WrRYlMZULgTXW+cTeK43plfAw3Tv5Xbk0ScyBUFXsrx3glFgnw24IKE+tKgEcpny8PnaHBzaWa/5dFybU47StZjRu2Iz6mUGSmZSgiBuflOWQghGcRuuvhe9RCbzcgkmP6dasiwNkkn4y3sauqG4CI87yUEi/OgtF96h7sPSmrBjt2SEl0JWPKpFC0UPyEyMiUuLR7frjh96A17zrwi4YxvwAUmbVneaE+E5Dt301qPhTEjRRyCRtms9M2Cwcg8KYZdgESmHyBJgU64GU4apbLZMp8GtupEhVdq5hR44zSgNa3Jjm7G2dDYl2Dw3xIka1hdoBTtV6bEmZCnJ3NgOp+GCCTfCoyj58JBNnPwQXgivSb7RXbDFyy7DflCvyv9Jp7I/Yiw7qGzUXFtddG1z5U09FxnQcmFg27We/LmwP3VeW6D70Q1Rx8Hd3mkkLj6b8eZrsEb6vboKU0irEs3XtJ4w2FsCqcw+V0HRMHdkNpqN9g/GZhBTbGJ2xHYjvNz2boZRaMaol9bapQC9OvhQ7JXl9DJuGt7DpEECzFWzz9YiHfQcCi/XwJVeBwDKjXFwg8POKLL7Db3tQ4U96fvNKg4bez++bjo2+4oALDNJNENGZ18anwTG2YUdAWeokneNfiX9gkFiB8R57R1Lh1+9Zmei+kK0l+q/DoIRdd4ByP32M0iT007UX+FW2d58BKytAK8RHqUZW324nR0Bs/2O8+gyJQq3qW8w94mYODuSXcLNvfbCHt1Z7c7y1Vhc
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: b2e6860f-fe6c-4c5f-1db7-08da02ca5686
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 10 Mar 2022 19:15:28.8219 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 7b9s+HpvXNZttBOWE6cnC/MQsd2cKRUPkBkFw96eI7ufp3/Y7LjjImZsUL0KHrAE
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR02MB3909
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/dV88mMyAF2KTyLytdN8OBpAW_G0>
Subject: Re: [DNSOP] Is DNSSEC a Best Current Practice?
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Mar 2022 19:15:41 -0000
On 10/03/2022 19:04, Paul Wouters wrote: > Sounds good to me. Something analogous to bcp195 could be a good plan, esp as signature algorithms, rsa key sizes and maybe ksk/zsk handling change over time. Not sure if it'd be better part of such a document but also be no harm to try document good/best practices in preventing hijacking (2fa etc), so one could consider a bcp on the topic of "managing data/origin authentication for DNS data" rather then just DNSSEC maybe. Either could be useful. Cheers, S. > > Even better if we would clarify DNSSEC is not an optional part of DNS, but I don’t think you are volunteering for that discussion 😀 > > Sent using a virtual keyboard on a phone > >> On Mar 10, 2022, at 13:54, Paul Hoffman <paul.hoffman@icann.org> wrote: >> >> Greetings again. My motivation here is kinda trivial, but I've heard it is a common complaint. When writing a about DNSSEC, I need to reference the RFC. But it's three RFCs (4033, 4034, and 4035), and possibly another (6840). It would be awfully nice to refer to "DNSSEC" with a single reference like "BCP 250". >> >> To get there, we need to update the RFCs and say that we want an BCP. This is mostly a paperwork exercise, but this WG isn't terribly good at getting those done. Maybe we could create a short-lived WG for moving DNSSEC to BCP that just the DNSSEC-y people need to pay attention to. If we do it, that WG would not take up any new DNSSEC-related work, just spruce up the base RFCs. >> >> In the big picture, I think it would be good for the DNS to be able to refer to DNSSEC more easily. Thoughts? >> >> --Paul Hoffman_______________________________________________ >> DNSOP mailing list >> DNSOP@ietf.org >> https://www.ietf.org/mailman/listinfo/dnsop > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop
- [DNSOP] Is DNSSEC a Best Current Practice? Paul Hoffman
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Paul Wouters
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Tim Wicinski
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Stephen Farrell
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Bill Woodcock
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Grant Taylor
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Colm MacCárthaigh
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Livingood, Jason
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Grant Taylor
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Yasuhiro Orange Morishita / 森下泰宏
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Tim Wicinski
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Paul Vixie
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Mukund Sivaraman
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Tim Wicinski
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Masataka Ohta
- Re: [DNSOP] Is DNSSEC a Best Current Practice? Viktor Dukhovni
- [DNSOP] DNSSEC as a Best Current Practice Paul Hoffman
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Ted Lemon
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Ted Lemon
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Jim Reid
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Jim Reid
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice David Conrad
- Re: [DNSOP] DNSSEC as a Best Current Practice Brian Dickson
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Bjørn Mork
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Bjørn Mork
- Re: [DNSOP] DNSSEC as a Best Current Practice Joe Abley
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Paul Hoffman
- Re: [DNSOP] DNSSEC as a Best Current Practice Brian Dickson
- Re: [DNSOP] DNSSEC as a Best Current Practice Ted Lemon
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Dr Eberhard W Lisse
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Dr Eberhard W Lisse
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Ted Lemon
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Vixie
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Bjørn Mork
- Re: [DNSOP] DNSSEC as a Best Current Practice Brian Dickson
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Paul Hoffman
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Masataka Ohta
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Jerry Lundström
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] [Ext] DNSSEC as a Best Current Practi… Jim Reid
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta
- Re: [DNSOP] DNSSEC as a Best Current Practice james
- Re: [DNSOP] DNSSEC as a Best Current Practice Paul Wouters
- Re: [DNSOP] DNSSEC as a Best Current Practice Tim Wicinski
- Re: [DNSOP] DNSSEC as a Best Current Practice Mukund Sivaraman
- Re: [DNSOP] DNSSEC as a Best Current Practice Masataka Ohta