[dnssd] Fwd: New Version Notification for draft-bradley-dnssd-private-discovery-00.txt

Bob Bradley <bradley@apple.com> Thu, 25 October 2018 19:11 UTC

Return-Path: <bradley@apple.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 2EED6130E3A for <dnssd@ietfa.amsl.com>; Thu, 25 Oct 2018 12:11:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.469
X-Spam-Status: No, score=-2.469 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id X_EJj1tKfRVg for <dnssd@ietfa.amsl.com>; Thu, 25 Oct 2018 12:11:08 -0700 (PDT)
Received: from ma1-aaemail-dr-lapp02.apple.com (ma1-aaemail-dr-lapp02.apple.com []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40206126DBF for <dnssd@ietf.org>; Thu, 25 Oct 2018 12:11:08 -0700 (PDT)
Received: from pps.filterd (ma1-aaemail-dr-lapp02.apple.com []) by ma1-aaemail-dr-lapp02.apple.com ( with SMTP id w9PJ7HUd038573 for <dnssd@ietf.org>; Thu, 25 Oct 2018 12:11:07 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=mime-version : content-type : sender : from : subject : message-id : references : to : date; s=20180706; bh=G/tbfIDXnqrDcu6a9t7AP6uGT/1nfn2IIm33TJFNRzA=; b=o/0h1z0Q43LV7BLXhgvmTVzKxAPaMvDWEC2sjK9w5pD5viNZjDCFMyh4p511XlvOI31B rbGDTnftNc/Zc98Jr7OhFp2IPDMIEN+1tkV8pyuCcFeeTreUCrXcwZk79KJPDAEeFN4h NvhhUS14Vn0LL+S7Z8AZQNBxHvRxD5AoSLITl3zQMAcd8tGe4v6Tuf9FZVAjNXwLm3gz HPEVLTraTiaZULlrpWR/zBQ8u+sqNCRD9YnjLO0dE2OF+rEu8BpJYZOqyEKotUJBfFX2 NC39UNi49ZTbAR3lv/p8Eb0+fyRLfrVuro/aHxIXYUGE3pzC36XB/zql0Vf9l16N1fvA DQ==
Received: from mr2-mtap-s02.rno.apple.com (mr2-mtap-s02.rno.apple.com []) by ma1-aaemail-dr-lapp02.apple.com with ESMTP id 2n8120ps2q-2 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <dnssd@ietf.org>; Thu, 25 Oct 2018 12:11:07 -0700
MIME-version: 1.0
Content-type: multipart/alternative; boundary="Boundary_(ID_7diHb7fenQtxdiMUXUyioQ)"
Received: from nwk-mmpp-sz10.apple.com (nwk-mmpp-sz10.apple.com []) by mr2-mtap-s02.rno.apple.com (Oracle Communications Messaging Server 64bit (built Jun 14 2018)) with ESMTPS id <0PH6002TE5AIYSC0@mr2-mtap-s02.rno.apple.com> for dnssd@ietf.org; Thu, 25 Oct 2018 12:11:06 -0700 (PDT)
Received: from process_viserion-daemon.nwk-mmpp-sz10.apple.com by nwk-mmpp-sz10.apple.com (Oracle Communications Messaging Server 64bit (built Jun 14 2018)) id <0PH600G004SMUB00@nwk-mmpp-sz10.apple.com> for dnssd@ietf.org; Thu, 25 Oct 2018 12:11:06 -0700 (PDT)
X-Va-T-CD: 30a9c062f6936833101a7e3ef1ad5808
X-Va-E-CD: 1145faa4443465047ea0b3fb1f4a1092
X-Va-R-CD: bdf50e76f823da9a31af636b5a07cae4
X-Va-CD: 0
X-Va-ID: f1ec4853-3602-405f-960c-ed5333b051d5
X-V-T-CD: 9cb739ef05cf90679a21e4dc783575a9
X-V-E-CD: 1145faa4443465047ea0b3fb1f4a1092
X-V-R-CD: bdf50e76f823da9a31af636b5a07cae4
X-V-CD: 0
X-V-ID: 05e7b8dc-2601-48a9-81fe-22fac6cd3120
Received: from process_milters-daemon.nwk-mmpp-sz10.apple.com by nwk-mmpp-sz10.apple.com (Oracle Communications Messaging Server 64bit (built Jun 14 2018)) id <0PH600M0058GT100@nwk-mmpp-sz10.apple.com> for dnssd@ietf.org; Thu, 25 Oct 2018 12:11:05 -0700 (PDT)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2018-10-25_10:,, signatures=0
Received: from [] by nwk-mmpp-sz10.apple.com (Oracle Communications Messaging Server 64bit (built Jun 14 2018)) with ESMTPSA id <0PH6008OS5AGF5A0@nwk-mmpp-sz10.apple.com> for dnssd@ietf.org; Thu, 25 Oct 2018 12:11:04 -0700 (PDT)
Sender: bradley@apple.com
From: Bob Bradley <bradley@apple.com>
Message-id: <29C7145A-5AB4-4686-8FA7-015F50DE4529@apple.com>
References: <154031233297.31357.18023345126032301204.idtracker@ietfa.amsl.com>
To: dnssd@ietf.org
Date: Thu, 25 Oct 2018 12:11:04 -0700
X-Mailer: Apple Mail (2.3445.102.2)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-10-25_09:, , signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/3OK-ZBBjZgQEwgNs57IC48szeN0>
Subject: [dnssd] Fwd: New Version Notification for draft-bradley-dnssd-private-discovery-00.txt
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Oct 2018 19:12:57 -0000

Here's a new draft describing an addition to DNS-SD to help preserve privacy. The basic idea is to use a 2-phase approach. First, it probes the network to find peers it has cryptographic relationships with (i.e. "friends"). Second, it does encrypted and authenticated service discovery with each friend.

There were a few goals:

1. Advertise and discover in a way that makes identifying and tracking users more difficult.
2. Provide per-user confidentiality so it's difficult for even your friends to determine the services you are offering or discovering.
3. Reduce discovery-related traffic on networks with a lot of non-friends.

And some non-goals:

1. Solving the privacy leaking issues at layers below DNS-SD, such as relatively static IP addresses and MAC addresses being used to correlate service discovery. Those issues are important, but require a larger effort across several working groups so this focuses on DNS-SD first.
2. Solving the problem of establishing cryptographic relationships between peers.

There are also several things that need more thought, such as working with sleep proxies and traffic analysis mitigation.

The plan is for Chris Wood to present this at IETF 103.

> Begin forwarded message:
> From: internet-drafts@ietf.org
> Subject: New Version Notification for draft-bradley-dnssd-private-discovery-00.txt
> Date: October 23, 2018 at 9:32:12 AM PDT
> To: Bob Bradley <bradley@apple.com>
> A new version of I-D, draft-bradley-dnssd-private-discovery-00.txt
> has been successfully submitted by Bob Bradley and posted to the
> IETF repository.
> Name:		draft-bradley-dnssd-private-discovery
> Revision:	00
> Title:		Private Discovery
> Document date:	2018-10-22
> Group:		Individual Submission
> Pages:		11
> URL:            https://www.ietf.org/internet-drafts/draft-bradley-dnssd-private-discovery-00.txt
> Status:         https://datatracker.ietf.org/doc/draft-bradley-dnssd-private-discovery/
> Htmlized:       https://tools.ietf.org/html/draft-bradley-dnssd-private-discovery-00
> Htmlized:       https://datatracker.ietf.org/doc/html/draft-bradley-dnssd-private-discovery
> Abstract:
>   This document specifies a mechanism for advertising and discovering
>   in a private manner.
> Please note that it may take a couple of minutes from the time of submission
> until the htmlized version and diff are available at tools.ietf.org.
> The IETF Secretariat