IETF Logo Mail Archive

[DNSOP] RDBD (Related Domains By DNS)

"Brotman, Alex" <Alex_Brotman@comcast.com> Tue, 03 March 2020 19:11 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A18F23A041E for <dnsop@ietfa.amsl.com>; Tue, 3 Mar 2020 11:11:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com header.b=vtGOdNMz; dkim=pass (2048-bit key) header.d=comcast.com header.b=xsRT0yvN; dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=comcastcorp.onmicrosoft.com header.b=hBSWHn7i
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J6YQbZFqiD0v for <dnsop@ietfa.amsl.com>; Tue, 3 Mar 2020 11:11:56 -0800 (PST)
Received: from mx0a-00143702.pphosted.com (mx0a-00143702.pphosted.com [148.163.145.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DF9DE3A0433 for <dnsop@ietf.org>; Tue, 3 Mar 2020 11:11:54 -0800 (PST)
Received: from pps.filterd (m0156891.ppops.net [127.0.0.1]) by mx0a-00143702.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 023Inkft021173 for <dnsop@ietf.org>; Tue, 3 Mar 2020 14:11:54 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : cc : subject : date : message-id : content-type : content-transfer-encoding : mime-version; s=20190412; bh=bi9/ocI2TUfB6bMn8JXj2JLdl1vH/hOIAD7d+g9MztI=; b=vtGOdNMzKufER2kpVy3p0IbBxCtaHdCyVkY1N4MgvqYhkx2xwHNxZWWULfl0U6Aqqk1E 6BGhuRcENivTWx2/z8J+y1tv7MJKsHYlqppT/EoOzEWA+vKTKy/NVY9OTVP/BcT5PQd4 eaoyNH+n/cpN5cND1ALVzdtqGF2RRcbMBjcy6ZkB8lfJVjin5ATlPeBA0sG8T/7is5d5 aN98r6Tdzcv6/zs+P++0WeMO3nuYuDeSKY0EhhBdRcD0NQB70bjuZQITmGDPYc6TfV3W M+YSCxIp5FcKusP4lsiMAm8XjY3C/kDnXjSfRNtWUpRBeORDly0Da017F8hCSHHscqFn 3w==
Received: from copdcmhout02.cable.comcast.com (copdcmhout02.cable.comcast.com [96.114.158.212]) by mx0a-00143702.pphosted.com with ESMTP id 2yfnp2tw6e-222 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <dnsop@ietf.org>; Tue, 03 Mar 2020 14:11:54 -0500
DKIM-Signature: v=1; a=rsa-sha256; d=comcast.com; s=20190412; c=relaxed/simple; q=dns/txt; i=@comcast.com; t=1583262714; x=2447176314; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=iDx8IeevJBeygs+002n94qEuX312T7blcSReqCsrYxM=; b=xsRT0yvNHIea5W1bHZyTQBsnzecCSKQuZnj0roGs10ZcNMqwQ5uahGvEruWD+/8p CX0WQZfJ9A+Sa6u0WdLaWFxobM0Dg6+AbCcpggzUKHL703eqJkGccbCPgK4sddL+ kPsKQtiXlmc1ptuf0JCIdU3qQSKGuoYmsfL2bQIgOrwQttDDsVJwYZMsM5QsjBFs Uv32GEkiOasT2OsnVTsUqfaGKMPd3TVehtgrGAXPMy5lU7Jq7TxHxLzpj+R4ULmh MhcjnjRb+buPDaalBXx5GomlfKiKb96NDWhCW3b5XeoL7tCkWQvgIi/GGEzz8A6v gb7Gvx/LEa5ovf4o59SkQw==;
X-AuditID: 60729ed4-24fff7000000bc72-64-5e5eabfabf53
Received: from COPDCEX14.cable.comcast.com (copdcmhoutvip.cable.comcast.com [96.114.156.147]) (using TLS with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (Client did not present a certificate) by copdcmhout02.cable.comcast.com (SMTP Gateway) with SMTP id 0F.54.48242.AFBAE5E5; Tue, 3 Mar 2020 12:11:54 -0700 (MST)
Received: from copdcex54.cable.comcast.com (147.191.125.153) by COPDCEX14.cable.comcast.com (147.191.124.145) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 3 Mar 2020 12:11:53 -0700
Received: from COPDCEXEDGE01.cable.comcast.com (96.114.158.213) by copdcex54.cable.comcast.com (147.191.125.153) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 3 Mar 2020 12:11:53 -0700
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (104.47.55.172) by webmail.comcast.com (96.114.158.213) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 3 Mar 2020 14:11:34 -0500
Received: from SN6PR11MB2638.namprd11.prod.outlook.com (2603:10b6:805:58::21) by SN6PR11MB2558.namprd11.prod.outlook.com (2603:10b6:805:5d::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.14; Tue, 3 Mar 2020 19:11:32 +0000
Received: from SN6PR11MB2638.namprd11.prod.outlook.com ([fe80::59d6:351d:d81:6943]) by SN6PR11MB2638.namprd11.prod.outlook.com ([fe80::59d6:351d:d81:6943%7]) with mapi id 15.20.2772.019; Tue, 3 Mar 2020 19:11:32 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: "dnsop@ietf.org" <dnsop@ietf.org>
CC: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Thread-Topic: RDBD (Related Domains By DNS)
Thread-Index: AdXxjnC1AAeKZw29QTiE+Dkc1lmpPw==
Date: Tue, 03 Mar 2020 19:11:32 +0000
Message-ID: <SN6PR11MB263815A3157874070BE86908F7E40@SN6PR11MB2638.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [2001:558:1404:117::4]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 52f041b2-ec1d-49a7-7da4-08d7bfa6afb1
x-ms-traffictypediagnostic: SN6PR11MB2558:
x-microsoft-antispam-prvs: <SN6PR11MB2558E91E073A6D84ED6566ABF7E40@SN6PR11MB2558.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 03319F6FEF
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(366004)(136003)(396003)(39860400002)(346002)(376002)(189003)(199004)(186003)(86362001)(71200400001)(66446008)(2906002)(76116006)(66476007)(52536014)(66556008)(64756008)(66946007)(55016002)(7696005)(316002)(33656002)(9686003)(81156014)(8676002)(6506007)(81166006)(6916009)(4326008)(966005)(5660300002)(478600001)(8936002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR11MB2558; H:SN6PR11MB2638.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: comcast.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: LaLHArello8SkwSPkERgzKbwG9u6pE3sGd/DPF3bMCB/5+cuoEDwVoF9T4M1OjYEirMHUZ/pJV2sc2bDsTQM8xkotpmPl3t2Fm1fQnexCOUKqJezF+tW6a/hy5bhy0Mf9UJEqS+xWXaPWBwnepTS02Ln2/gtTESIvUFBrAq/oLk=
x-ms-exchange-transport-forked: True
arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=K8PswfiDD/FVZrqfXx+9PI5yD6kLtz9T2ltv2+5JDJj+7tnMteD72P2t7WeycMZjgP9fvGFHmtyZlNTBNWQnOeRq4luhXhBmiApyDlDSpHq5Cg6aDb5Y41T4NEtP4PUfOgXozbOTY3hN4aG4nsY0UZw+koXjFOaKTjlqTsbR6JZl7UZU9xjITWVP0653gT9iiTHk4B79y28nwwwvBBSuZimGWo5FMVRFdjjm8+6rejDp4u7+GBx0q8EAhoVN2dyzzT5bJxHek+c2yXJJMtHnW74GiLF0UDVMpPPtNlgLe6L7RVjjAqXLXwSB/cjz+m77sg47ykr6j70A0tgoyoYZmA==
arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=3rRbzbtjllyFs7LXFBMC/6KBtFBkurkRl38yejmcVGk=; b=AmKmHpmcpcclUk8tZlZRtXJ6Zv5L5hGNRlYKW/feNAP5EsN6CaDkO0/iTUkDFCiTKtx4U0mPlx31y3IeL4/qvLETU8ZlL98WYrbHU5BDQlSCyf2eCcGajqimK5SGpLKkgGXJ3pGr1iojKT9aD4opSLyMjlOvuonJt9W6cwoKIkWKhsb5cBL7RNgXpVMHeOZm+ze/WeUmCl1vVUgZl5clX7ZNsGH6XNWdnb6EvxRVKNkSCKlTgY7IBZ6V9Bl2t3KrHDUrTlwys2wpfgDapVoll9vta365r4/i3c2vA3/ZyVFaK3Q2R9fJScP57JVqMgbIqHYVkUCfBGgT62NArr8mlw==
arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcastcorp.onmicrosoft.com; s=selector1-comcastcorp-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=3rRbzbtjllyFs7LXFBMC/6KBtFBkurkRl38yejmcVGk=; b=hBSWHn7ieqpFs4SannZGguKSv5yef7F2lcKJsmzlnRlxmyU+KfDS+tvvITNZkJRIPG5XTzfLK0O4dlclHoag0dkpu1cTeWSakO+xgeKj8XNP5RUQDRVmYM1fQ9sLg5YkVpJFhOa3CWLHTORk84cIidAv3knHwLMJySmHBZN7KO4=
x-ms-exchange-crosstenant-network-message-id: 52f041b2-ec1d-49a7-7da4-08d7bfa6afb1
x-ms-exchange-crosstenant-originalarrivaltime: 03 Mar 2020 19:11:32.8306 (UTC)
x-ms-exchange-crosstenant-fromentityheader: Hosted
x-ms-exchange-crosstenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
x-ms-exchange-crosstenant-mailboxtype: HOSTED
x-ms-exchange-crosstenant-userprincipalname: Bf35iwtc/pp1r+0lgmGezyVonRrytbp/FtcD8Io5yGtk/xphG1eiOUh6Ho2EiGEcZ1h9Ah92edjnJ7+7KqYhbZdW30oB9nxFvPlsmBE4vfQ=
x-ms-exchange-transport-crosstenantheadersstamped: SN6PR11MB2558
x-originatororg: comcast.com
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Forward
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrLIsWRmVeSWpSXmKPExsWSUDRnsu6v1XFxBismi1jcfXOZxWL63mvs Dkwea7uvsnksWfKTKYApissmJTUnsyy1SN8ugSvjweMe5oJ/nBX3z61mamBs4+hi5OSQEDCR uHZrHRuILSRwmEni5Ab9LkYuIPsgo8STtrVsEM5tRokdTw+zQjgnGCWae6czQjiLmCQOXe9h gnDuM0o0nO9hBhnGJmAg8erSQRYQW0RAVeLCv+9MIDazgL7E/mnHwWxhATWJK83f2SFqtCXW HFrHBGHrSczsPw9mswioSBz8fBfM5hWIkTjy7iJYPaOAmMT3U2ugZopL3HoynwniIQGJJXvO M0PYohIvH/9jhaiPllj2qocRIq4h8erLDShbVuLS/G4o21ei49UdVghbS+Lz7x6g/zmA7GyJ 81cqIcLqEi0f50GVyEhcP70dqrWFRWLaFhdIOKZI7Np5kB0iLiexqvchC0z9gxvbwUEqIbCb ReLnkm/MExiNZiF5AcLWkViw+xMbhK0tsWzha+ZZYO8LSpyc+YRlASPLKkY+SzM9Q0MTPUNT Cz0jQ6NNjOBEMe/KDsbL0z0OMQpwMCrx8J5eFhcnxJpYVlyZe4hRgoNZSYTXlzM6Tog3JbGy KrUoP76oNCe1+BCjNAeLkjjvU0n1OCGB9MSS1OzU1ILUIpgsEwenVAPj+i3+bmtVHy4U8DLX ZVxpPDX2993/ci4zLJSFpz7QT5ru/qu2IF3MOk9rXv8q7U7JEP8VT9iulF7ze3y1RWJP8cul rx9PF75341Z6ncPSaQ82L6ie/2UGp4DSKjHNJdo98vv9akvafNTE/955k3HVr3HXlpyuqwac td2yD7fsUL81q4gxY26pEktxRqKhFnNRcSIA1oOQJxADAAA=
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-03-03_06:2020-03-03, 2020-03-03 signatures=0
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/reroLYSPKkYUfgFR_OcV5GZqRwY>
Subject: [DNSOP] RDBD (Related Domains By DNS)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Mar 2020 19:12:00 -0000

Hello,

A while ago, Stephen and I had sent out a few versions of this, and we had some discussions and revisions were made.  At the time, discussion waned, however I wanted to pick this up again before the onset of IETF107.

https://datatracker.ietf.org/doc/draft-brotman-rdbd/

 I've had some folks contact me privately, and I saw an inquiry on another list.  There does seem to be some interest, at least in the anti-abuse and research communities, of making this a functional proposition.

To recap, the rough idea is that implementers would be able to positively or negatively confirm relationships between domains.  In the world of anti-abuse and research, these links are not always obvious.  For example, in a large corporation, some teams may go outside acceptable practice and register a domain through another provider.  Or it may be that you have international branches that operate on a different TLD, but you may not have registered with all TLDs.  In the latter case, being able to both positively and negatively state a relationship could be useful for anti-spam/phishing.

Any questions or comments would be greatly appreciated.  Thank you.

--
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast

v2.23.0 | Report a Bug | By Email