Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt

Tommy Jensen <Jensen.Thomas@microsoft.com> Thu, 25 July 2019 17:30 UTC

Return-Path: <Jensen.Thomas@microsoft.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B4B181201EE for <dnsop@ietfa.amsl.com>; Thu, 25 Jul 2019 10:30:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fyhLQXw9oHmT for <dnsop@ietfa.amsl.com>; Thu, 25 Jul 2019 10:30:10 -0700 (PDT)
Received: from NAM04-CO1-obe.outbound.protection.outlook.com (mail-co1nam04on0701.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe4d::701]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 87BCB1201CC for <dnsop@ietf.org>; Thu, 25 Jul 2019 10:30:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eANdaxMqzg8Kgtsx8O7jDDrDtg5e8sWZcp9n8+YsupUvOFHIGKu7Fk7O+/etqCU7WG41Lhejh27+Ro0rlMZ6KjGRiF044Pw3syVE9uVrSnlPLhZc4JixkobuZNUgeFKsADSFbRenDFyqBkI/rFAhnSDVITFZZyZD7M6JCallrQMQacY57U9le7X2FNy5xCClxCZAbyVfSH3z9yVodciYnPOy/4Ar6GBvIde3ZxJU5lOdxB8Z8kusUwB968pbq79nuW1P24L5XXIg2ff2sivnhk2I/qMB2RQAhua4LtesGL0zpkAR0XJaR4U66U6HlQciLVo6gVObMB9QCTeThACBiA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=W+9hz8ghvxHI/iZw7DiDFQ0w3dDy1uh0XTbiaZSOlJE=; b=AHBjrnF8gZgG17nywksKd9r+o4zZTBWEuGDW3qwLsHid6Z+ObkLJUihAsW82AyxFrznSLnIbkHXxPqnU/hsLG4waE1rT2fVFUw1Q8WK/zulihFgHiN1eBv8EiepMxCOvpeBSTut7QYnbpnsVemnO1sCNRI20mxk8ltPdWILSv0PzWKNSOqIqmVd9jAa7l51PP4gd26tasMjtkunC5lPbcMf6jHyrH01pOBKL7IaPz6Uo7poALXpoOUPHV6QGLQlq8THihPAibRQgEHuCJ8hHti2g/Nk8tykvyt3WO++DyMXpL+v0DTm8MMKrYf9ymXQyVyx9j4G5EwN3qL+ZcMXUcA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=microsoft.com;dmarc=pass action=none header.from=microsoft.com;dkim=pass header.d=microsoft.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=W+9hz8ghvxHI/iZw7DiDFQ0w3dDy1uh0XTbiaZSOlJE=; b=O4L4+8FfjigCrFo6CyoQ0modHLxIw9L8PvBE3iy5XEJngHheD+dlsmk+rEHjfHAUQE0epxPsTqbXMNy94RYbIR744L/MguWeAFHi9QQWtgsEgKPPZ6on13SiaEkd6qfrLSjYc9/JLzykMdQ6gL/8iW/6Yts4GU1js9b0fNGzogI=
Received: from MN2PR21MB1213.namprd21.prod.outlook.com (20.179.20.141) by MN2PR21MB1197.namprd21.prod.outlook.com (20.179.20.77) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2136.0; Thu, 25 Jul 2019 17:30:05 +0000
Received: from MN2PR21MB1213.namprd21.prod.outlook.com ([fe80::24eb:3b4c:428b:8fde]) by MN2PR21MB1213.namprd21.prod.outlook.com ([fe80::24eb:3b4c:428b:8fde%9]) with mapi id 15.20.2136.000; Thu, 25 Jul 2019 17:30:05 +0000
From: Tommy Jensen <Jensen.Thomas@microsoft.com>
To: Joe Abley <jabley@hopcount.ca>
CC: Martin Hoffmann <martin@opennetlabs.com>, Paul Hoffman <paul.hoffman@icann.org>, dnsop <dnsop@ietf.org>
Thread-Topic: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt
Thread-Index: AQHVQvZHpXRU3CJBE0yHiYohoXb9j6bba1uAgAAmWQSAAAPlAIAAAJgG
Date: Thu, 25 Jul 2019 17:30:05 +0000
Message-ID: <MN2PR21MB1213D7642E8872BFCA59E8AAFAC10@MN2PR21MB1213.namprd21.prod.outlook.com>
References: <155658243855.16316.18029354473288109146@ietfa.amsl.com> <20190724210726.GA6827@laperouse.bortzmeyer.org> <alpine.DEB.2.20.1907251152480.8471@grey.csi.cam.ac.uk> <624835DE-8E63-4C89-9799-136464B26E34@gmx.net> <alpine.DEB.2.20.1907251225140.8471@grey.csi.cam.ac.uk> <alpine.LRH.2.21.1907251021350.23797@bofh.nohats.ca> <A0C9EA31-F6B1-44EB-9228-12B00A004401@icann.org> <20190725165255.78c7f782@glaurung.nlnetlabs.nl> <MN2PR21MB1213BC6D7C947D3A7AF0219BFAC10@MN2PR21MB1213.namprd21.prod.outlook.com>, <CAJhMdTOE_UJjOBzcFkcO2EhGoSZsTtE0P5OLr2xoT1+bUKeUEQ@mail.gmail.com>
In-Reply-To: <CAJhMdTOE_UJjOBzcFkcO2EhGoSZsTtE0P5OLr2xoT1+bUKeUEQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Jensen.Thomas@microsoft.com;
x-originating-ip: [131.107.159.174]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 64148fd9-e502-4b2b-d468-08d71125bb7f
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600148)(711020)(4605104)(1401327)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:MN2PR21MB1197;
x-ms-traffictypediagnostic: MN2PR21MB1197:
x-microsoft-antispam-prvs: <MN2PR21MB11970E4F15B913863EEB0346FAC10@MN2PR21MB1197.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-forefront-prvs: 0109D382B0
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(346002)(136003)(39860400002)(376002)(366004)(189003)(199004)(476003)(8676002)(55016002)(6436002)(14454004)(54896002)(71200400001)(6116002)(3846002)(8990500004)(10290500003)(486006)(10090500001)(316002)(11346002)(9686003)(71190400001)(74316002)(7736002)(14444005)(256004)(2906002)(68736007)(66556008)(7696005)(52536014)(81166006)(76176011)(33656002)(66446008)(478600001)(8936002)(4326008)(186003)(236005)(86362001)(25786009)(99286004)(6506007)(6246003)(5660300002)(81156014)(22452003)(53936002)(53546011)(229853002)(19627405001)(64756008)(54906003)(76116006)(102836004)(446003)(66946007)(66066001)(105004)(6916009)(26005)(91956017)(66476007); DIR:OUT; SFP:1102; SCL:1; SRVR:MN2PR21MB1197; H:MN2PR21MB1213.namprd21.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 6xK1x5YwEFlJ8QUsazM57ujaUNFWVypi0I0oCubDwIOl8m6AofVaaL7CATcrgkeYbNxPyBDaJdW18/a/7pMXdf/cjXv5FqQKD/LRwz7IKhbSrtav1+LxFxsC5wRUNiF8H9Coep7ixJzCSSumL5eKahyRspgWd5xgCVct4apftVUVa2ldQyJIunbUEGTDTUi1UjP+UYe52q32e//gg0R2mBWNwegR7SYtYvYf52a9v+cf7N7K7bf5V6t4eMQkdcAL/UkRf9XkDYcSOHlSrQ4p9SIvpTwKAsA/z+FVjmEQjJ/5RVbq1/bMRxY5O5pYUvjhCv9/xODYi/fEKi6aTpvO826W9KY+afVipaV0vKDDf3/rz0QvfhviIK8XYeDuaCp+W1UktlG37Lde+rs6nQSFJb1FFv0vyfwV6mQCE11UeJo=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MN2PR21MB1213D7642E8872BFCA59E8AAFAC10MN2PR21MB1213namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 64148fd9-e502-4b2b-d468-08d71125bb7f
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2019 17:30:05.2074 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tojens@microsoft.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR21MB1197
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/zVnkPnGXE-pp25haO5ybeBgEUBs>
Subject: Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jul 2019 17:30:19 -0000

Good point ("s/new/other" in my definition of "encrypted DNS"). And I agree, "encrypted DNS" is a superset of "DoH and DoT" but not the other way around.

Thanks,
Tommy
________________________________
From: Joe Abley <jabley@hopcount.ca>;
Sent: Thursday, July 25, 2019 10:24 AM
To: Tommy Jensen <Jensen.Thomas@microsoft.com>;
Cc: Martin Hoffmann <martin@opennetlabs.com>;; Paul Hoffman <paul.hoffman@icann.org>;; dnsop <dnsop@ietf.org>;
Subject: Re: [DNSOP] [Ext] I-D Action: draft-hoffman-dns-terminology-ter-01.txt

On Jul 25, 2019, at 19:14, Tommy Jensen <Jensen.Thomas=40microsoft.com@dmarc.ietf.org<mailto:Jensen.Thomas=40microsoft.com@dmarc.ietf.org>> wrote:

> I still maintain that having descriptive terms should be preferable
over an abundance of abbreviations, particular in documents. In this
case, why not "classic DNS" or "traditional DNS"? Likewise, "encrypted
DNS" instead of DoTH.

I agree with "encrypted DNS" because that makes the meaning (DoH or DoT or X : X is some new way to encrypt DNS) clear when it is intended

Like DNSCrypt with UDP transport?

Or like an apex TXT record that contains a one-time token to authenticate a zone to a service?

I spent some time this week at the Africa DNS Forum in Botswana promoting the idea that the concept of "DNS Security" is usefully more broad than just DNSSEC. Perhaps we need a corresponding effort to broaden "DNS Encryption" beyond DoH and DoT?


Joe