IETF Logo Mail Archive

Re: [DNSOP] WGLC for draft-ietf-dnsop-alt-tld

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 13 December 2022 21:42 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD33FC1524C7; Tue, 13 Dec 2022 13:42:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.999
X-Spam-Level:
X-Spam-Status: No, score=-6.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Nu0y5rvmrjx6; Tue, 13 Dec 2022 13:42:15 -0800 (PST)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on2134.outbound.protection.outlook.com [40.107.13.134]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 52264C1524B7; Tue, 13 Dec 2022 13:42:13 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=KmundEael51TBKKLo8677iEMzuKPd7iejVM9DGd3aeWRE5HVnBBbmch+hi/xosgTRJrDIjbxlIfxRwbNo4F8OMp2oflVkMkxhbzswbviEwuJuF2Q7TU6eWV/mofJ+RoXShGKcj5ZG3VALwUx4LQKxLc1zvFDatZahBQcfJBbI/E8jTG97GDQupmFM1gumfa0Quq9NzIuVtRuCqdmCXpsxI0vl4p2dWeiyJlEtTxG4OdHyK2NUgOIVScFLq0Xze5g4+J4BaneRPRxLOzO8r/wNfXstntFWMBgUTGmAXZDBHzbbInO/QFb3Q4PnnM58vZhBGYSYVittGCxUlziI3B+sA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=z4LmTzQXREowMx2Ttv6/GsicqSDRjJV8KtId2I2ZiSA=; b=MqK+WHLKYcU5i4qfTPb9qOI8e2Ayf4gSgef2v2fxs2YZSQHNWJ8tNpdI0o4RSHwhzXhCuJ+QuZnBsx4LkHAUujThElSXLrbsBLfY250Nek7Uyx2nqyOkT4OS1+LnDBZRXIXmkIQJ3utvQfh6YOIoY8Wx/mK1/3N5dwAi4snmODTj9s4U2aynxzMWU/O3isn34Yl6jKddV+CJ5LdU2Z0l8sw2ECR2A56f8tuI3ikuneOFe7Nq8+O+pw7Uodwz2GYkGTEEctFtyalChGUG2OOPaqid8mVEdOrsJcqBpNO7XS3WkDIX5Ya9UDUedZKke0uiAjrtQqtujx6x38ySppmZ7g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=z4LmTzQXREowMx2Ttv6/GsicqSDRjJV8KtId2I2ZiSA=; b=o6GyOYh4roxs4BSLgnAYIhGG3NFjDw8gMDxSMJM0v7uwiLHGT25F7gXuFDpxSZ8HWhPY+Pc0UQIn3zuLA+KyJMzIw63nZab/8p/SNxPcg7foGLY2WYUMdFLuoldD0pdtH6m6iiGf/EuvKgzHPvQ5ExPENBUEGJAoc4sDEtUTwdle8IdiuPv1I8pFPOxTTSTaKinBLSITkZNH4mt5fUOTTWRs0/IEPqOgRD1C8Sp1IzhqdLaKwfNbSqWCMnJjD9D9OgvT7w+8TWEeQ/TD0/wQNzAM5uL4x8hGenyP1eWJkQuUBHocK8mPj/mSXOxyVQHJWa35/3ewfF9kSj7/Ur45VA==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by DBAPR02MB6024.eurprd02.prod.outlook.com (2603:10a6:10:179::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5924.11; Tue, 13 Dec 2022 21:42:09 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::c025:1133:f726:aa9a]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::c025:1133:f726:aa9a%3]) with mapi id 15.20.5880.019; Tue, 13 Dec 2022 21:42:08 +0000
Message-ID: <3d0bd2ce-a712-6d93-0779-823707b0ff15@cs.tcd.ie>
Date: Tue, 13 Dec 2022 21:42:07 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.4.2
Content-Language: en-US
To: Suzanne Woolf <swoolf@pir.org>, "dnsop@ietf.org" <dnsop@ietf.org>
Cc: "dnsop-chairs@ietf.org" <dnsop-chairs@ietf.org>, "Rob Wilton (rwilton)" <rwilton@cisco.com>
References: <21F6EA34-550E-4CEB-B7F2-7B676767EA00@pir.org>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
In-Reply-To: <21F6EA34-550E-4CEB-B7F2-7B676767EA00@pir.org>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------blVo43WQTPruwbUPPMG20YUc"
X-ClientProxiedBy: DB6PR07CA0098.eurprd07.prod.outlook.com (2603:10a6:6:2c::12) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DB7PR02MB5113:EE_|DBAPR02MB6024:EE_
X-MS-Office365-Filtering-Correlation-Id: bffae67a-40ee-42a4-cd3c-08dadd52e299
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(396003)(366004)(39860400002)(136003)(376002)(346002)(451199015)(66899015)(66556008)(235185007)(66476007)(5660300002)(83380400001)(41300700001)(8936002)(2906002)(36756003)(44832011)(21480400003)(6506007)(6512007)(33964004)(31696002)(38100700002)(86362001)(41320700001)(2616005)(186003)(110136005)(316002)(786003)(54906003)(8676002)(66946007)(4326008)(31686004)(6486002)(478600001)(557034005)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: bffae67a-40ee-42a4-cd3c-08dadd52e299
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Dec 2022 21:42:08.8258 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: CrezFxNIjR9v+UvSO/zD8D7/ejZLeohdTpMa/jCXMgELOgJRW76pPNJ9yfIBZj8Z
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DBAPR02MB6024
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/tlWuAikoK564tAcYW6YRR27gygc>
Subject: Re: [DNSOP] WGLC for draft-ietf-dnsop-alt-tld
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Dec 2022 21:42:21 -0000

Hiya,

This is good enough, so should proceed.

In terms of substantive comments, I can only think of
arguments that have already been thrashed out so won't
raise any of 'em.

A suggestion/nit which I'm fine to see ignored: the
text in section 4 (Privacy Considerations) isn't that
clear and might be helped via one or a couple of examples
e.g. by adding:

"For example, a value such as 'mumble<person-name>mumble.alt'
would be a clear privacy leak."

And for bonus points, one might further add:

"In addition if a name ending in .alt is sufficiently unique,
long-lasting and frequently leaks into the global DNS, then
regardless of how the value is constructed, that value can
act like a web cookie, with all the associated downsides of
(re-)identification."

Cheers,
S.

v2.23.0 | Report a Bug | By Email