[DNSOP] Fwd: New Version Notification for draft-dickson-dnsop-ds-hack-02.txt

Brian Dickson <brian.peter.dickson@gmail.com> Wed, 10 November 2021 03:30 UTC

Return-Path: <brian.peter.dickson@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43C8E3A1186; Tue, 9 Nov 2021 19:30:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6mj5rOZE6nuW; Tue, 9 Nov 2021 19:30:05 -0800 (PST)
Received: from mail-lf1-x129.google.com (mail-lf1-x129.google.com [IPv6:2a00:1450:4864:20::129]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B4893A1141; Tue, 9 Nov 2021 19:30:02 -0800 (PST)
Received: by mail-lf1-x129.google.com with SMTP id f18so2549334lfv.6; Tue, 09 Nov 2021 19:30:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=2HKFgkFeU2cxCvWF4L9X/oJ/hkIppNhEHcWYs1YIYa4=; b=KaSO8iTsU2Jpdcx1OYSxditn1jlq3pywnjWyV1RyI1dFeIs72+ipcFEVgiIEOn6SDW VxBZuYrYI3FyMxQmyTcc+52gc7fqq9AhRYzsOejC1fWqr16H26vMwQ8utmQJj/NZ+YyB q61UnPNyKmU7w8sarAocK8zf+hVEdPHQVfnJvTb5QgMDzfvZrG5fLfVrJ2pvEbDG17u7 o3arQc5Rr2x5FzSyZHUmVuXgoe+xOqug+mFNOh1YkReYveyuX5Ou5eBdtfJBhuS1RUzu o0THcQkINHjH5n2hR9/6hWitzlkC7VswZqa7xXqXj3ByeHqFaUIjsxlsoLKkr0iuDgwU 9T9Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=2HKFgkFeU2cxCvWF4L9X/oJ/hkIppNhEHcWYs1YIYa4=; b=i+iB90IPRAJfnnu6wpoYSxJLCyySoWj9zIFMHH5CtU/jl+uYhOPAitCZTtFd6Loly/ n6uCWtup+qeET6nskmN+8W9wtQQ2iSP+wRnCCoGKlm9DsVOZiAVMPl787YxVasP4gHYO NIHOaY8pxOOWllGrj2BGtggYQwgbsPtZb7AC/AZV77/1MJS8UgOTjmQSUuL+2yIEIe/x DzsTKJhoyRttNnaZfYEqggOq0Io4WOpVlzgoBA6VbFdboheMIFy6IoYdp0G3CA89krL7 IjNfLT/zL0xIbON3RE2iqc8G/i+oDIIwN58Vg456pbaeM/ofsuWvA/daLtlWSUlV3wKP 8TMQ==
X-Gm-Message-State: AOAM532v2B+JCL8YH4+hErr1v+lcJHyoHg2TnHog4lgYXlmhgWOaZ7ZA PjRuZZn/oqI9DWJK7WfP864NsubAOlhIQLdWVEMmlfx9fPo=
X-Google-Smtp-Source: ABdhPJz+Zu+oqQTWOTdT9DSliYQjawdwEohhV7h/yxLU/8mP58gpzXMZVJ5eCFibgy267lAZIsYo7lE9MU/0sx9Ye+U=
X-Received: by 2002:a05:6512:b21:: with SMTP id w33mr11589267lfu.447.1636514994890; Tue, 09 Nov 2021 19:29:54 -0800 (PST)
MIME-Version: 1.0
References: <163208775322.1936.8174031857239734154@ietfa.amsl.com>
In-Reply-To: <163208775322.1936.8174031857239734154@ietfa.amsl.com>
From: Brian Dickson <brian.peter.dickson@gmail.com>
Date: Tue, 09 Nov 2021 19:29:43 -0800
Message-ID: <CAH1iCirM8R4S+-o+qFdo7yiBPH=OCB4jK799BHO0dVVd0H48gw@mail.gmail.com>
To: "dnsop@ietf.org WG" <dnsop@ietf.org>, dprive@ietf.org
Content-Type: multipart/alternative; boundary="000000000000f0ad1d05d066d61c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/w0fHnnfQDWciUbU_RJoP-GVO9n0>
Subject: [DNSOP] Fwd: New Version Notification for draft-dickson-dnsop-ds-hack-02.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Nov 2021 03:30:17 -0000

Dear DPRIVE and DNSOP,
Here is one of the drafts referenced in my presentation(s) on Thursday.
Brian

---------- Forwarded message ---------
From: <internet-drafts@ietf.org>
Date: Sun, Sep 19, 2021 at 2:42 PM
Subject: New Version Notification for draft-dickson-dnsop-ds-hack-02.txt
To: Brian Dickson <brian.peter.dickson@gmail.com>



A new version of I-D, draft-dickson-dnsop-ds-hack-02.txt
has been successfully submitted by Brian Dickson and posted to the
IETF repository.

Name:           draft-dickson-dnsop-ds-hack
Revision:       02
Title:          DS Algorithms for Securing NS and Glue
Document date:  2021-09-19
Group:          Individual Submission
Pages:          6
URL:
https://www.ietf.org/archive/id/draft-dickson-dnsop-ds-hack-02.txt
Status:
https://datatracker.ietf.org/doc/draft-dickson-dnsop-ds-hack/
Html:
https://www.ietf.org/archive/id/draft-dickson-dnsop-ds-hack-02.html
Htmlized:
https://datatracker.ietf.org/doc/html/draft-dickson-dnsop-ds-hack
Diff:
https://www.ietf.org/rfcdiff?url2=draft-dickson-dnsop-ds-hack-02

Abstract:
   This Internet Draft proposes a mechanism to encode relevant data for
   NS records on the parental side of a zone cut by encoding them in DS
   records based on a new DNSKEY algorithm.

   Since DS records are signed by the parent, this creates a method for
   validation of the otherwise unsigned delegation records.

   Notably, support for updating DS records in a parent zone is already
   present (by necessity) in the Registry-Registrar-Registrant (RRR)
   provisioning system, EPP.  Thus, no changes to the EPP protocol are
   needed, and no changes to registry database or publication systems
   upstream of the DNS zones published by top level domains (TLDs).

   This NS validation mechanism is beneficial if the name server _names_
   need to be validated prior to use.




The IETF Secretariat