[DNSOP] Secdir last call review of draft-ietf-dnsop-rfc7958bis-03
Klaas Wierenga via Datatracker <noreply@ietf.org> Thu, 01 August 2024 18:33 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: dnsop@ietf.org
Delivered-To: dnsop@ietfa.amsl.com
Received: from [10.244.2.81] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id ED8C3C14F6A9; Thu, 1 Aug 2024 11:33:17 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Klaas Wierenga via Datatracker <noreply@ietf.org>
To: secdir@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 12.19.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172253719755.2383132.16085097683731517707@dt-datatracker-659f84ff76-9wqgv>
Date: Thu, 01 Aug 2024 11:33:17 -0700
Message-ID-Hash: NHL65LJKWHOACPYFQOY3W2IJF3U4X4LC
X-Message-ID-Hash: NHL65LJKWHOACPYFQOY3W2IJF3U4X4LC
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: dnsop@ietf.org, draft-ietf-dnsop-rfc7958bis.all@ietf.org, last-call@ietf.org
X-Mailman-Version: 3.3.9rc4
Reply-To: Klaas Wierenga <klaas@wierenga.net>
Subject: [DNSOP] Secdir last call review of draft-ietf-dnsop-rfc7958bis-03
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/nPVcyyv0Zh-tlRX-Jnhg_snRLis>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
Reviewer: Klaas Wierenga Review result: Has Nits The draft reads well and is clear. I have one question that is maybe worth answering in the security considerations. What is the impact of retrieving the trust anchors over http instead of https? Does that lead to a risk of ending up with an invalid set of trust anchors? Klaas
- [DNSOP] Secdir last call review of draft-ietf-dns… Klaas Wierenga via Datatracker
- [DNSOP] Re: Secdir last call review of draft-ietf… Joe Abley
- [DNSOP] Re: Secdir last call review of draft-ietf… Klaas Wierenga
- [DNSOP] Re: [Ext] Secdir last call review of draf… Paul Hoffman