IETF Logo Mail Archive

[DNSOP] post-dispatch dispatching a draft...

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 17 May 2022 18:40 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 004CEC159A2A for <dnsop@ietfa.amsl.com>; Tue, 17 May 2022 11:40:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KPO4-SLXbrQp for <dnsop@ietfa.amsl.com>; Tue, 17 May 2022 11:39:55 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on20716.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e1a::716]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5A121C157B50 for <dnsop@ietf.org>; Tue, 17 May 2022 11:39:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dF2gYhfMAsbreJqEmPvjEUuxWwZj+PdPKKfxzAX8RvQqNHaKMJhHIWAJ4w+KPUHOgMFdAfd/E9c2VzYDCadFkTKIs6QzDIMcL9LvAZAwlNKDOOMn3g3BTNG1eosyrSPbQ2AYEozt938zYaf+ZRQOz1kcIzgFH3TunIKV9J/RvEXG4bj+blmbho6YU9NArg8bHsDmkv0kVm0fhoDqjbQRFtKv373W9Zoo9ym0OaJLGNNA6IL9FcoijdTjgMabpYdaoHgmJgtkOFO92E4iLotrRw6V//cPbgR3L9UWfZgmtKtZWZLSvUONc/iz1AoMaH4HcNhUntePgq7u501YPdB7QQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=xiNSAgNg4OskihZ1tM24b2FypludlJoUkagrvQH9FP4=; b=BsVmPSWCnaYwOMSp4qfecRROltkklNK8dAwowQB0pLbHCU0bXz8t6mrwAe3YUbSYMCOB+4en5Iqwv0QCp/iMRdOajl7sKRBZeGuQm/Fk14w1gKoU7RoZNayu6gIbS2fjK/H8n5w2WfsdLF+sNvyK55dTMOs0XtuRcfsZEks/cWZj9Alencq3XjQ54USBrgh4GKCg6OVUlAJAqELdYxxig3Q43yD0PgcO2RY9ADvMbh2YunYjq1Di/eCqol3aKu79IZyFfY5uXDfCnRSuX4NKzsjvZ8rQXR6+ECGO1wS9hehkRaUP7Kq1Hd1s1wSyOut6hj9AKh4TQHs5F0IHFAYepw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xiNSAgNg4OskihZ1tM24b2FypludlJoUkagrvQH9FP4=; b=EmmyQ725o3AELslET7jbmWZavPvJoLOTbuKz5DAqBVF/lqXoqMDFmY4KjUTl2GOv00+u4CbqUbpawN1ji9Z5834+jaDowB0QpBc+jDMawAIY51s2z1o+VKpJVOwSg+U7wtCyIT4ACta19OwhKP/Har1Xh2sI+Q4S+vP+GF+LpSvTkG3cjfBgobUVXr7AAL33pXa44QNmqvUA2vpPt3Cd4qjjAh76eSKmwODQV+7p4rgn9N+5fsVCrmkEL6nGWQvXK6Y3hl3bfyC2tNCDZJIkDV5qWb1thPiewGRH6XR6ZpXsTGmXUjDbLoT1FfqDeo51gQxed0isJL3nCVyeZ7lYsg==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by DB7PR02MB4789.eurprd02.prod.outlook.com (2603:10a6:10:28::26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5273.13; Tue, 17 May 2022 18:39:44 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::92f:cb0b:71d:b049]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::92f:cb0b:71d:b049%7]) with mapi id 15.20.5250.018; Tue, 17 May 2022 18:39:44 +0000
Message-ID: <83482f28-7510-1bf0-3c06-e41725cec8bc@cs.tcd.ie>
Date: Tue, 17 May 2022 19:39:42 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.1
Content-Language: en-US
To: dnsop@ietf.org
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------pd3XCIhj1zhsPDJlROdBEZmN"
X-ClientProxiedBy: DB6PR07CA0113.eurprd07.prod.outlook.com (2603:10a6:6:2c::27) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: f296b533-107f-4138-4863-08da38349cc6
X-MS-TrafficTypeDiagnostic: DB7PR02MB4789:EE_
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <DB7PR02MB4789B49CF6191AAA95202BBBA8CE9@DB7PR02MB4789.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 1wqEB8yBBcITEuHd6qoXrQFRuYQEzLqcTaj2vCCkCXNdSaMNV0TIyGVsEzNJD9NOjZ7bNIg4/36j0xHQezd1AtmMKqNll2uxbXxbINK2I8XPv5effhFsVqFhlXTy4lSF8tlbA/z6ziCy4B6bnm0j/R/0W7A6FSY9F0a95i1ENk2YdlqyKOO6McpDxIgIJHLFzNFSzWvUbfZVWDUgvShalOoLWDyg72j/aQwiIMna7Qoyinl9O1hi7Sg4ATXPxtsGkN/VbrcPfcBS8RTXlfcHAjKWIjYhh0xYA6gWU08cdCq2nAHmLyrhMJ/uq0ZEl5IoHgUWQDDwd2FwRjFZ3RRwh0CTJgB4A4XGe6Qb+azGJcNcYHLDE08Va/l52geGj7CjvtwXo/Y98+RHgf5Ur7dQf1CIZ3UXvC9WSpr9gfAuTzbWNTNwiHhB4O8Ku/4BgvBEBp3G7203PBqmsuwBJgoJ/uJItTVYZXwUsLy1isVSQO15nonu+yvjkpOOX06o0qEcsSLXebxYFWac/6lG/H8MmcBTmQYlXSMnI+50VPF56syeMMcfRj42GzBNQ5x+lGiR8s08LoyLIgFiJFeX7wwu0Bh1H2CO4nAub5LLPZ0UFpX/n6/nw/MdAudYC4mTeXbZVpuL+iiXsFjTNlw21WP4MWZBOi+hs476cf6fcvWvnQVNhUueHXNzyIG3MzMoGqE8dx9HiMQ6al653DL9UnXKVLFDMwD0fiRAa5qx1/n9b5DSgcMkhEStrMMg6dF6hqq6ZQZhcjY2LHdDyJIFiVeJPcrwD9sdl2iYGGYLIhdDrJci3+uQRpCHEApebuNfjQWl
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(2616005)(33964004)(186003)(6512007)(6506007)(3480700007)(21480400003)(83380400001)(5660300002)(44832011)(235185007)(86362001)(8936002)(66556008)(66946007)(8676002)(66476007)(6486002)(508600001)(966005)(2906002)(36756003)(38100700002)(31696002)(6916009)(786003)(316002)(31686004)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 2
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-MS-Exchange-AntiSpam-MessageData-1: RxVCoIf2UXBzMg==
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: f296b533-107f-4138-4863-08da38349cc6
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 17 May 2022 18:39:44.7291 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: K0V0XDEU82H7N5xE39FIe2/2RorSIxPO9pfxEuxtB/I5NgdQ0xrz0jIFPiCPzXJC
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR02MB4789
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/lbTdtFZqB3kHS1iU7U4cve7DgZ0>
Subject: [DNSOP] post-dispatch dispatching a draft...
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 May 2022 18:40:00 -0000

Hi all,

At IETF 113 a draft of mine [1] was presented (slides [2])
at the dispatch session. Part of the upshot there was to
check with dnsop if people felt asking for adoption here
would be the right plan for this draft.

The draft is concerned with (re-)publishing ECHConfigList
values in SVCB/HTTPS RRs as the keys for ECH are rotated,
but in the context where the ECH private key holder and
the DNS publishing entities differ. As an FYI, ECH interop
servers operated by Cloudflare and by me rotate such keys
hourly so some new automation is needed for cases where one
does not have some kind of dynamic DNS API available.

To be clear: my own opinion is that adopting this in dnsop
would not be a good plan, but that asking the TLS WG would
be the right plan instead. That said though, even if this
were adopted by TLS, I think it'd benefit from input from
dnsop (and httpbis), once the adopted form of the draft had
taken would could be a near-final overall shape. And who
knows, maybe I'm wrong and this'd be better handled here.

So - do people here consider it'd be useful to try for
a call for adoption for this in dnsop, or do you agree with
me that doing that in the tls wg would be better?

Thanks,
S.

PS: If it's useful and there's time I'd be fine with asking
the above again at the upcoming interim.

[1] https://datatracker.ietf.org/doc/draft-farrell-tls-wkesni/
[2] 
https://datatracker.ietf.org/meeting/113/materials/slides-113-dispatch-a-well-known-url-for-publishing-echconfiglists-00

v2.19.0 | Report a Bug | By Email