Re: [dnssd] WWDC / Bonjour Privacy

Ted Lemon <> Tue, 11 June 2019 15:19 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id B295B12025B for <>; Tue, 11 Jun 2019 08:19:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id KNL6C6qQRzIE for <>; Tue, 11 Jun 2019 08:19:36 -0700 (PDT)
Received: from ( [IPv6:2607:f8b0:4864:20::72b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 10BB2120258 for <>; Tue, 11 Jun 2019 08:19:36 -0700 (PDT)
Received: by with SMTP id g18so7901243qkl.3 for <>; Tue, 11 Jun 2019 08:19:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=+t0io/iUAPZnFS2wTiXCPQGysVLiO5H9t5TwXTbVX/g=; b=FNCoR2bS633l8/BOViZ3axw6TYoJGZA8Xx99Kb8EcR77pln7tBRL8Gpva85kxEH/HI FbTdXsPd4EBlIWkSVk0t+/mzoiLHKku0tPehW+wQo9xnFuqel8zXsMkexwmva9FObnNb gn9mc3/LFX+Q2ImmjfXpTz7fpjwzD8P8BOhfTDUReLdRBsrHHpeENXRUb/lUt55SYoRl f1pY5HHcmfyq5qHfhabJ7jCuim1ZKrfGnJXiu43mLmXprP367pLDArZwR9aV37wmOy3X agJW+DSruLlY744FpUJFsYjgu5ZZGuCdE9U9Jc8GL5xHftuQgym+Wcu/ANfjAo4w7xM+ ZNmQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=+t0io/iUAPZnFS2wTiXCPQGysVLiO5H9t5TwXTbVX/g=; b=OdbMEfmt764ELQVZZB/POWyCzGhL9U7mlehNWYMX8ZEKng1LJCaQ2V9sFmZsB/b/xj jwfl21OZnsPVJhUr4vlW70Gkly7OmlxzretWshHHvSzkv2PVeL6XQN5IWxL9tQKSTWYY 0WA6slxDIf1+F/ewk7k8xoctI1mwoo6HEbUYoefmGRU27flIbTfvcp9pcttcDvWdyXzK 9U2RK0jqc/cOex1SaXX8/mYJAsB4lSNxQ5/9XBDMvXrHn1s8/EQ62RdFS8l28pVbixzh g25knHBnz8HVtJkE4CpD3rEjfc4oyEp7QJ8m9lscwm1h9hEnIwDPnV0iFshr3dn+rPU1 pudQ==
X-Gm-Message-State: APjAAAU5hvDNxA0ZN5/nlrLHrSbcSwfaZF5OkORfpaHLYdLDXiG0GGzn IbQYd/uG1QvQiiDEy/UNZSfqQebf57M=
X-Google-Smtp-Source: APXvYqyTmwoegfaiZJSm74eB1wxBnL63RakG6s7AdwQZpbo39roZV6uq5iJgwznlgqpfqnTYcHDt0A==
X-Received: by 2002:a37:e0d:: with SMTP id 13mr21962188qko.83.1560266375049; Tue, 11 Jun 2019 08:19:35 -0700 (PDT)
Received: from [] ( []) by with ESMTPSA id v30sm3235859qtk.45.2019. (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 11 Jun 2019 08:19:34 -0700 (PDT)
From: Ted Lemon <>
Message-Id: <>
Content-Type: multipart/alternative; boundary="Apple-Mail=_0B7B362D-941F-46E1-9F5A-05F6CE3FD58E"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Tue, 11 Jun 2019 11:19:33 -0400
In-Reply-To: <>
Cc:, Christian Huitema <>
To: Daniel KAISER <>
References: <> <> <> <>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <>
Subject: Re: [dnssd] WWDC / Bonjour Privacy
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 11 Jun 2019 15:19:39 -0000

Thanks, Daniel.   IIRC, some folks at Apple have been involved in working on the spec.   I think part of the radio silence that you’re hearing is that the Apple product cycle is such that the period from March to June is actually a very busy time, and so there just aren’t cycles for IETF between the spring and summer meetings.

> On Jun 11, 2019, at 11:13 AM, Daniel KAISER <> wrote:
> Regarding the privacy aspects of (m)DNS-SD:
> I still think it would be beneficial to finalize a document on a privacy-extension,
> and I still want to work on that.
> I agree, the lack of feedback within the group is a problem;
> we have come up with quite a few different proposals and there is no clear "favorite".
> Also, I see the problem that we try to solve too many use cases with a single specification
> (p2p mobile devices, classical  DNS server, printer, ...).
> For P2P applications like the tic-tac-toe example from the WWDC talks,
> the PSK could be extracted from the TLS connection and be used to derive a secret for obfuscating the
> service related information for the (next) discovery process.
> The interface matches the one from our proposal for a DNS-SD/mDNS based manually authenticated
> device pairing protocol.
> We could either go in the TLS/ESNI direction or stick with our older proposals and seamlessly
> integrate a privacy extension into mDNS-SD / Bonjour.
> Listening to the great talks by Apple I wonder if Apple is interested in working with us on
> a specification that would fit Apple's use cases of Bonjour.
> If someone is interested, I would be happy to collaborate.
> (However, as I work at a University and the projects I am involved in currently are not directly related
> to (m)DNS-SD, the time I can spend on this topic is limited until I find a matching project.)
> Kind regards,
> Daniel
> On 6/8/19 1:11 AM, Ted Lemon wrote:
>> On May 31, 2019, at 8:33 PM, Olafur Gudmundsson < <>> wrote:
>>> I think you are right and with only 2 people interested in the work it is time to close the WG 
>> It is a concern to me that the number of people who are interested in this and paying attention to the mailing list and replying seems low, but at the same time work is going on to deploy our work in the industry.   All of the major O.S. vendors support it.   One option would be to go forward with the remaining work as ISE documents, with the potential that the IETF might want to update them later.
>> I would be curious to know your opinion on this: do you feel that you would rather that this stuff not be documented, or are you concerned that there aren’t enough people here doing review?
>> _______________________________________________
>> dnssd mailing list
>> <>
>> <>
> -- 
> Dr. Daniel Kaiser
> Research Associate
> SnT- Interdisciplinary Centre for Security, Reliability and Trust
> University of Luxembourg
> Maison du Nombre (MNO)
> 6, avenue de la Fonte
> L-4364 Esch-sur-Alzette
> Office: E02 0225-010