[dnssd] Review of draft-sctl-advertising-proxy-00
Jonathan Hui <jonhui@google.com> Thu, 08 October 2020 21:13 UTC
Return-Path: <jonhui@google.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 435533A0D74 for <dnssd@ietfa.amsl.com>; Thu, 8 Oct 2020 14:13:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.6
X-Spam-Level:
X-Spam-Status: No, score=-17.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id re6nITuYlj0h for <dnssd@ietfa.amsl.com>; Thu, 8 Oct 2020 14:13:50 -0700 (PDT)
Received: from mail-ot1-x32a.google.com (mail-ot1-x32a.google.com [IPv6:2607:f8b0:4864:20::32a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9D77D3A0D6E for <dnssd@ietf.org>; Thu, 8 Oct 2020 14:13:50 -0700 (PDT)
Received: by mail-ot1-x32a.google.com with SMTP id q21so6956532ota.8 for <dnssd@ietf.org>; Thu, 08 Oct 2020 14:13:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=ANiQ/9yZIl+qVezXGnHMC9/twb4wrK8qNVcQI3HLkh4=; b=HvBFsiWwI2H0/FSq3G2XdYujF/5VYtZkVNyRR29YAAu9ijnOmUUCMi6eNJJPP4h+aA efI5ZrUvH30+Mk2tWJWVnGdyjtIOk4lJEG4tPdQVXVcUvCR+SubvHzPihotfNlhLKIT0 OKllUqTZpvNOLP78gJH4nll0Xx7qA7f7XGvVEEaBzDPzEQDOTRqGqFFzmyZcB9eVbkCY 8JIDzapPgUGDqK/WiE8Ici5/7/dptgVhY0gcdso4gdy9RKHXH+JW8NAXGTCLI9UJHo+w FcUWAxHqpoO6FObSj93s5VAB3khMehR1dvaK4Czi1Y3PFhBMUd4yWcqYhGrduVQvfBb9 5VPw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=ANiQ/9yZIl+qVezXGnHMC9/twb4wrK8qNVcQI3HLkh4=; b=JDHAHVP8Eh7dnXiqx2tUGo9dTybBSioNcdrbu1Hkel8Dne2oMxVWShrwsy+e9rkYM9 z9jhVKPfd7GeZc+bZyvlXwQK8d5mSJtqPo++aSgWcE/PYsslZJs86GGmV7iGdHhJKThW 2FX0gG4r46vFfKGqjzvyent3E3hoo30mIv8Y4841f0JkSah/WTjd04hJ76G4hzIKzyyx bj9HBgutyoh9fK446yAqwcpVqQ1ywzBMI5bAR5Zi0B146gwZbG6zDz6xZSM3RNr58jex GTi9wUj64W1nvnoDdcDeXjHyHpjnfGLHsLfRMWPuf3yn8QmtTu3XGAkq+P9Ha+8aWjZ+ zFoA==
X-Gm-Message-State: AOAM532L8cHcthDD/Bwl2+J9O31gWtOeDwskVjkmdn4q+auApl4InWM4 HP2ygtjqPvxqb9RPekmE0gCnRPRJy2OGddw2lXi3pc+WoXNccg==
X-Google-Smtp-Source: ABdhPJyQH+huVIHQyzGOiixXvPhGzqJcJ7L5IB4Sl+Iw78v5PHBtjltB2FvcHg4Sp3vn8vLY8UWtAfq143Lb19vEiys=
X-Received: by 2002:a9d:7993:: with SMTP id h19mr2841076otm.129.1602191629412; Thu, 08 Oct 2020 14:13:49 -0700 (PDT)
MIME-Version: 1.0
From: Jonathan Hui <jonhui@google.com>
Date: Thu, 08 Oct 2020 14:13:38 -0700
Message-ID: <CAGwZUDu5DfCNnnk1WFPwpmMaz3if5NL6uq-GfX-oeoGJ3snOrQ@mail.gmail.com>
To: dnssd@ietf.org
Content-Type: multipart/alternative; boundary="000000000000ef62ff05b12f4e55"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/mp5LJCzpwBNNSyruGvg1FrC3TvQ>
Subject: [dnssd] Review of draft-sctl-advertising-proxy-00
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Oct 2020 21:13:52 -0000
I have reviewed this document. I believe this document addresses a real pain point for constrained networks - namely how legacy clients can discover services offered by constrained devices using a service registry. As mentioned in my review of draft-ietf-dnssd-srp-02, this is of great interest to the Thread Group and Project CHIP efforts, both of which are based on IPv6. Overall, this document looks like a great start. Are there considerations for having multiple Advertising Proxies and SRP servers active on the same link? Is that within scope of this document? More targeted comments: 2.4. No Address Suppression I see this addresses one of my questions in my review of draft-ietf-dnssd-srp-02. disconnecting and then reconnecting to the network. The service > registry has no reliable automatic way to determine whether a device > that registered records has failed or disconnected from the network. > Would we permit implementations that do have visibility into whether a device has disconnected from the network? I realize this is a layer violation and technology specific. their records in a unicast DNS namespace, there is a presumption they > they will only register addresses with sufficient scope to be usable Typo: "they they" 3. Security Considerations > I know draft-ietf-dnssd-srp-02 describes cryptographic mechanisms to enforce first-come, first-serve naming. I presume with the introduction of Advertising Proxy, the same guarantees do not extend to legacy devices publishing via mDNS. Should we mention that here? An Advertising Proxy may made data visible to eavesdroppers on the Typo: "may made data" -> "may make data" Thanks. -- Jonathan Hui
- [dnssd] Review of draft-sctl-advertising-proxy-00 Jonathan Hui