Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt

Tommy Jensen <Jensen.Thomas@microsoft.com> Thu, 25 July 2019 17:30 UTC

From: Tommy Jensen <Jensen.Thomas@microsoft.com>
To: Joe Abley <jabley@hopcount.ca>
CC: Martin Hoffmann <martin@opennetlabs.com>, Paul Hoffman <paul.hoffman@icann.org>, dnsop <dnsop@ietf.org>
Thread-Topic: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt
Thread-Index: AQHVQvZHpXRU3CJBE0yHiYohoXb9j6bba1uAgAAmWQSAAAPlAIAAAJgG
Date: Thu, 25 Jul 2019 17:30:05 +0000
Message-ID: <MN2PR21MB1213D7642E8872BFCA59E8AAFAC10@MN2PR21MB1213.namprd21.prod.outlook.com>
References: <155658243855.16316.18029354473288109146@ietfa.amsl.com> <20190724210726.GA6827@laperouse.bortzmeyer.org> <alpine.DEB.2.20.1907251152480.8471@grey.csi.cam.ac.uk> <624835DE-8E63-4C89-9799-136464B26E34@gmx.net> <alpine.DEB.2.20.1907251225140.8471@grey.csi.cam.ac.uk> <alpine.LRH.2.21.1907251021350.23797@bofh.nohats.ca> <A0C9EA31-F6B1-44EB-9228-12B00A004401@icann.org> <20190725165255.78c7f782@glaurung.nlnetlabs.nl> <MN2PR21MB1213BC6D7C947D3A7AF0219BFAC10@MN2PR21MB1213.namprd21.prod.outlook.com>, <CAJhMdTOE_UJjOBzcFkcO2EhGoSZsTtE0P5OLr2xoT1+bUKeUEQ@mail.gmail.com>
In-Reply-To: <CAJhMdTOE_UJjOBzcFkcO2EhGoSZsTtE0P5OLr2xoT1+bUKeUEQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
Content-Type: multipart/alternative; boundary="_000_MN2PR21MB1213D7642E8872BFCA59E8AAFAC10MN2PR21MB1213namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 64148fd9-e502-4b2b-d468-08d71125bb7f
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2019 17:30:05.2074 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tojens@microsoft.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR21MB1197
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/zVnkPnGXE-pp25haO5ybeBgEUBs>
Subject: Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jul 2019 17:30:19 -0000

Good point ("s/new/other" in my definition of "encrypted DNS"). And I agree, "encrypted DNS" is a superset of "DoH and DoT" but not the other way around.

Thanks,
Tommy
________________________________
From: Joe Abley <jabley@hopcount.ca>
Sent: Thursday, July 25, 2019 10:24 AM
To: Tommy Jensen <Jensen.Thomas@microsoft.com>
Cc: Martin Hoffmann <martin@opennetlabs.com>; Paul Hoffman <paul.hoffman@icann.org>; dnsop <dnsop@ietf.org>
Subject: Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt

On Jul 25, 2019, at 19:14, Tommy Jensen <Jensen.Thomas=40microsoft.com@dmarc.ietf.org<mailto:Jensen.Thomas=40microsoft.com@dmarc.ietf.org>> wrote:

> I still maintain that having descriptive terms should be preferable
over an abundance of abbreviations, particular in documents. In this
case, why not "classic DNS" or "traditional DNS"? Likewise, "encrypted
DNS" instead of DoTH.

I agree with "encrypted DNS" because that makes the meaning (DoH or DoT or X : X is some new way to encrypt DNS) clear when it is intended

Like DNSCrypt with UDP transport?

Or like an apex TXT record that contains a one-time token to authenticate a zone to a service?

I spent some time this week at the Africa DNS Forum in Botswana promoting the idea that the concept of "DNS Security" is usefully more broad than just DNSSEC. Perhaps we need a corresponding effort to broaden "DNS Encryption" beyond DoH and DoT?

Joe

[DNSOP] I-D Action: draft-hoffman-dns-terminology… internet-drafts
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Stephane Bortzmeyer
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Tony Finch
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Normen Kowalewski
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Tony Finch
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Paul Wouters
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Paul Hoffman
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Tony Finch
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… George Michaelson
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Paul Wouters
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Martin Hoffmann
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Evan Hunt
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Tommy Jensen
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Joe Abley
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Paul Wouters
Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-t… Tommy Jensen
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Tommy Jensen
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Brian Dickson
Re: [DNSOP] I-D Action: draft-hoffman-dns-termino… Paul Wouters