Re: [DNSOP] new DNS classes
Nico Williams <nico@cryptonector.com> Fri, 07 July 2017 16:55 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 032AC131777; Fri, 7 Jul 2017 09:55:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, RCVD_IN_SORBS_SPAM=0.5, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cryptonector.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YCt0BkIFOq9D; Fri, 7 Jul 2017 09:55:17 -0700 (PDT)
Received: from homiemail-a35.g.dreamhost.com (sub4.mail.dreamhost.com [69.163.253.135]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7CB73131769; Fri, 7 Jul 2017 09:55:17 -0700 (PDT)
Received: from homiemail-a35.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a35.g.dreamhost.com (Postfix) with ESMTP id 29843C0028BA; Fri, 7 Jul 2017 09:55:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h=date :from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to:content-transfer-encoding; s= cryptonector.com; bh=Y2mfow/2aEnPdOy54Gra5zwUJN8=; b=cSQB3oqhF8/ 3/OHAYJiwPrJzyV9UQp7sAERg5/sDslJwrVFYSJ854Smdnlob+ebCGAl2ztiwqPk qSkDIVg5b3GgUIfV/ZFFeaDpKNGUypbmA81S4VfQ78dj7JIzQHZ3GCEypQ+Cobua zblOxcYChvLESMReTCISAFB4i1eMVTFw=
Received: from localhost (cpe-70-123-158-140.austin.res.rr.com [70.123.158.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a35.g.dreamhost.com (Postfix) with ESMTPSA id 5398BC086D0C; Fri, 7 Jul 2017 09:55:16 -0700 (PDT)
Date: Fri, 07 Jul 2017 11:55:14 -0500
From: Nico Williams <nico@cryptonector.com>
To: David Cake <dave@davecake.net>
Cc: Randy Bush <randy@psg.com>, dnsop <dnsop@ietf.org>, Paul Vixie <paul@redbarn.org>, IETF Rinse Repeat <ietf@ietf.org>
Message-ID: <20170707165513.GG3393@localhost>
References: <m2podgxq97.wl-randy@psg.com> <5F120298-CD66-4CB6-9DC5-0C5DF6F02CC7@fugue.com> <CACfw2hhx+-Z=7ZnnaOkToc+Bd7aKDpBFt+nFUxkt9sKqLn4D8Q@mail.gmail.com> <2DF1AFC7-643B-4610-8EB8-0616D3D0B024@fugue.com> <595BD53E.60701@redbarn.org> <E739C1CB-E60E-4B4B-99CF-1E6C68CB6926@rfc1035.com> <7DCA3DAF1993A2E66915D0DD@JcK-HP5.jck.com> <595BE0D5.5000106@redbarn.org> <m2mv8jw9qq.wl-randy@psg.com> <33235E8D-147D-4178-BC45-DFC1E1C27B99@davecake.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <33235E8D-147D-4178-BC45-DFC1E1C27B99@davecake.net>
User-Agent: Mutt/1.5.24 (2015-08-30)
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/nqekZ9MRWIq79wKTwbWxh2kyYwM>
Subject: Re: [DNSOP] new DNS classes
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Jul 2017 16:55:19 -0000
On Fri, Jul 07, 2017 at 03:32:21PM +0200, David Cake wrote: > > On 5 Jul 2017, at 10:47 am, Randy Bush <randy@psg.com> wrote: > > > > i think avoiding icann is a red herring. if the draft in question had > > done a decent job of exploring the taxa of needs for name resolution > > outside of the 'normal' topology, we would have the start of a base on > > which to discuss this. > > If you have a single centralised root for your new class, you will > probably either recreate the problems of ICANN, or create one or more > of the problems that ICANN has very consciously tried to avoid. If > you have a system of name resolution that avoids the need for a > centralised root, you probably don’t need a new class to implement it. > The few marginal cases that need to interact with the one root but not > be ICANN controlled are why we have the RFC 6761 process. > > I agree a taxa of needs that do not fit within those three cases would > have been useful. Well, there's a) the rooted hierarchy of the public DNS (IN class), b) mDNS (which isn't really DNS, just a local discovery mechanism based on the DNS protocol), c) the HS class, which traditionally wasn't used in a federated manner (but maybe I'm wrong about that), so it doesn't need a rooted hierarchy, though it also could use one. (b) and (c) are niches, with no real place on the open, public Internet. One could use something like HS as an alternative to LDAP, say, but recall that the vision of a world of federated and open directories never materialized NOT because of limitations of DAP/LDAP, but because of confidentiality/ privacy considerations. Such a class would really need to use the same rooted hierarchy, and, really, the same root, as the public DNS IN class -- i.e., an IN RR type namespace extension class, so it's best to consider such a class in those terms rather than as a "directory class". I am having a very difficult time imagining, say, a peer-to-peer or web-of-trust DNS (other than mDNS). Perhaps my imagination fails me. A rooted hierarchy is and has been incredibly useful, and the simplest method of providing a consisten Internet to all users. It seems to me very unlikely that we'll ever move from that. At most we may have alternative roots, but a mostly common set of TLDs (e.g., as happens in many private (corporate) networks). Nico --
- [DNSOP] Minor editorial change to draft-ietf-dnso… Warren Kumari
- Re: [DNSOP] Minor editorial change to draft-ietf-… Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ralph Droms
- Re: [DNSOP] Minor editorial change to draft-ietf-… Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… william manning
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… Paul Vixie
- [DNSOP] new DNS classes Jim Reid
- Re: [DNSOP] new DNS classes Ted Lemon
- Re: [DNSOP] new DNS classes Paul Vixie
- Re: [DNSOP] new DNS classes David Conrad
- Re: [DNSOP] new DNS classes John C Klensin
- Re: [DNSOP] new DNS classes Paul Vixie
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] Minor editorial change to draft-ietf-… Mark Andrews
- Re: [DNSOP] Minor editorial change to draft-ietf-… Matthew Kerwin
- Re: [DNSOP] Minor editorial change to draft-ietf-… william manning
- Re: [DNSOP] Minor editorial change to draft-ietf-… Mark Andrews
- Re: [DNSOP] Minor editorial change to draft-ietf-… Matthew Kerwin
- Re: [DNSOP] new DNS classes Randy Bush
- Re: [DNSOP] Minor editorial change to draft-ietf-… Suzanne Woolf
- Re: [DNSOP] Minor editorial change to draft-ietf-… John C Klensin
- Re: [DNSOP] Minor editorial change to draft-ietf-… Warren Kumari
- [DNSOP] draft-sullivan-dns-class-useless (was Re:… Andrew Sullivan
- Re: [DNSOP] Minor editorial change to draft-ietf-… Ted Lemon
- Re: [DNSOP] Minor editorial change to draft-ietf-… Roy T. Fielding
- Re: [DNSOP] Minor editorial change to draft-ietf-… Mark Andrews
- Re: [DNSOP] new DNS classes Phillip Hallam-Baker
- Re: [DNSOP] new DNS classes John C Klensin
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Randy Bush
- Re: [DNSOP] new DNS classes shogunx
- Re: [DNSOP] Minor editorial change to draft-ietf-… John C Klensin
- Re: [DNSOP] Minor editorial change to draft-ietf-… Martin Rex
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] Minor editorial change to draft-ietf-… Mark Andrews
- Re: [DNSOP] Minor editorial change to draft-ietf-… John C Klensin
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] new DNS classes David Cake
- Re: [DNSOP] new DNS classes Paul Vixie
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes David Conrad
- Re: [DNSOP] new DNS classes william manning
- Re: [DNSOP] new DNS classes Pete Resnick
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] new DNS classes Phillip Hallam-Baker
- Re: [DNSOP] new DNS classes Pete Resnick
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] new DNS classes Nico Williams
- Re: [DNSOP] new DNS classes Pete Resnick
- Re: [DNSOP] new DNS classes Randy Bush
- Re: [DNSOP] new DNS classes Mark Andrews
- Re: [DNSOP] new DNS classes Andrew Sullivan