Re: [Doh] panel discussion on DoH/DoC
Joseph Lorenzo Hall <joe@cdt.org> Thu, 07 February 2019 15:33 UTC
Return-Path: <jhall@cdt.org>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1662124C04 for <doh@ietfa.amsl.com>; Thu, 7 Feb 2019 07:33:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.099
X-Spam-Level:
X-Spam-Status: No, score=-0.099 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KPEazz_0pTXQ for <doh@ietfa.amsl.com>; Thu, 7 Feb 2019 07:33:14 -0800 (PST)
Received: from mail-ot1-x32d.google.com (mail-ot1-x32d.google.com [IPv6:2607:f8b0:4864:20::32d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D974E126D00 for <doh@ietf.org>; Thu, 7 Feb 2019 07:33:13 -0800 (PST)
Received: by mail-ot1-x32d.google.com with SMTP id u16so394689otk.8 for <doh@ietf.org>; Thu, 07 Feb 2019 07:33:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=fZ8esZE3MyYm6XdqXnqYIL5VoxScYMZb2GVuF+6Kpd8=; b=J2ptf1Hc8xl0T32WVEVtFXcZaE5TZzX9i5XTz/xCyrAxV0Di9UaVdDDBcuM7F//nr0 oAxg35uv7vh0krtu0naOlYMDL+SnqDSMh0SdFI6A6S8Oqwqj+e1WmHbbwI2T/FRepWwA prbMf/KF3buFwOrXDfIEhk4Eu4ukxYJ9UPHLw=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=fZ8esZE3MyYm6XdqXnqYIL5VoxScYMZb2GVuF+6Kpd8=; b=B+gFKJLOc5HDxzE2lHiY3epqhxG7qy9BhyMwCze8UvO99QTVTdZODifqgbynf7mTZ7 eMfhABIoNYtpUr3K9cq4La00QRLLaA/128uNsXqOTIP8Jc/k/bS1xffPbdKw8FFfcKzs qfym325Q6PiuZxRKeS5SueyZNT979rRgRHDrDQEKTxlGIG8RrV2/q3vVms2twcyD4rvN PKqXb28qdjnhhbFzVLkRMteWiWFmKHjuGSzI+EjBa9dgbXlg/vBRvjflkvvr6OZEMFDD n/qdC862MbiQL3Md3OfVpPw04bUsI+fXM7+3E2IOGmDCKUALA7FjhDaYPGn8yj34hjCW V5Dw==
X-Gm-Message-State: AHQUAubHhiXTehnm2xXn5dvoXaOmxm+glZ+qb+cYm1IkiMiQkiXXN0hf PmN8A80PjYkNWcaCquAHe8ioTe/lg3GWpSvezxZoqQ==
X-Google-Smtp-Source: AHgI3IYHakjnPUWeuJFxGN7jlLE51AVyBKIjyczPP7fFS3p1LbtJE64zPmEE7Jc294SkCGACYReELp6vXIHUKE6g08s=
X-Received: by 2002:aca:b882:: with SMTP id i124mr598937oif.127.1549553592838; Thu, 07 Feb 2019 07:33:12 -0800 (PST)
MIME-Version: 1.0
References: <20190207105106.GB1772@server.ds9a.nl> <C7C3BAF7-4BD4-4EE2-B3F2-1F8B49222980@fugue.com> <20190207130313.7g7hf4swaopnr75e@nic.fr> <FD7BFAFF-88B9-49BF-A652-3649ADCD53F9@fugue.com> <637C85D5-EACC-4C39-A220-753AC83FD78A@rfc1035.com> <35CBC108-69C9-4EB9-AACE-EEB39F802456@fugue.com> <1503183837.15474.1549549260349@appsuite.open-xchange.com> <97216205-8415-42F6-BF24-5FFB589FC887@rfc1035.com>
In-Reply-To: <97216205-8415-42F6-BF24-5FFB589FC887@rfc1035.com>
From: Joseph Lorenzo Hall <joe@cdt.org>
Date: Thu, 07 Feb 2019 10:33:01 -0500
Message-ID: <CABtrr-UfwtgmO80A9en0-4tyPKqRRdvwR3BVEQQv+ykrNt-=mg@mail.gmail.com>
To: Jim Reid <jim@rfc1035.com>
Cc: Vittorio Bertola <vittorio.bertola@open-xchange.com>, doh@ietf.org, Ted Lemon <mellon@fugue.com>
Content-Type: multipart/alternative; boundary="00000000000076444605814f8ff3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/EnRKchru4P0EDZL0hP_qORncp-s>
Subject: Re: [Doh] panel discussion on DoH/DoC
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Feb 2019 15:33:16 -0000
Heya, I tried to think of a few good questions to the FOSDEM DNS privacy panel [1] and included the following (forgive what may be a naive question!): ---- 3\. Software like browsers seem to want to have a list of DOH providers that they can shuffle queries across in order to minimize the raw quantity of queries any given DOH service sees from a given user. Right now the big DOH services all have very very different privacy policies and terms of service making such a list impossible as you'd be comparing apples to oranges (e.g., one second you are talking to CF's 1.1.1.1 which a very strong privacy policy and the next minute you are talking to Google's 8.8.8.8 which has a much less strong privacy policy). How should application developers decide which kind of DOH service to build into their offerings? (My own organization, CDT, is going to start an effort in a few months to try and bring DOH providers together to set some baseline "rules of the road" for these kinds of services and we'd love to work with others thinking about the "wild west" of DOH.) ---- I'm about to go on leave for a bit (18-Feb up to Prague) but would love to help think through what might make sense here. We did a project last year with VPN providers where we sought to clarify some "rules of the road", so to speak, and ended up basically with a standard questionnaire that providers answered ( https://cdt.org/issue/privacy-data/vpns/ , https://cdt.org/insight/unedited-answers-signals-of-trustworthy-vpns/ ). best, Joe [1]: https://gist.github.com/jpmens/be639dfd798dba2d65fb1c98e209e3f8#gistcomment-2812589 On Thu, Feb 7, 2019 at 9:28 AM Jim Reid <jim@rfc1035.com> wrote: > > > > On 7 Feb 2019, at 14:20, Vittorio Bertola < > vittorio.bertola@open-xchange.com> wrote: > > > > but this looks more like a job for DPRIVE, which has the word "policy" > in its charter and "Document Best Current Practices for operating DNS > Privacy services" > > OTOH DoH didn’t exist when DPRIVE was created and what was meant then by > DNS privacy is not quite the same as is meant today. > > I think DoH is the better choice. Though there’s enough ambiguity/overlap > between the WGs that the ADs might need to decide this. > > _______________________________________________ > Doh mailing list > Doh@ietf.org > https://www.ietf.org/mailman/listinfo/doh > -- Joseph Lorenzo Hall Chief Technologist, Center for Democracy & Technology [https://www.cdt.org] 1401 K ST NW STE 200, Washington DC 20005-3497 e: joe@cdt.org, p: 202.407.8825, pgp: https://josephhall.org/gpg-key Fingerprint: 3CA2 8D7B 9F6D DBD3 4B10 1607 5F86 6987 40A9 A871 Don't miss out! CDT's Tech Prom is April 10, 2019, at The Anthem. Please join us: https://cdt.org/annual-dinner/
- [Doh] panel discussion on DoH/DoC bert hubert
- Re: [Doh] panel discussion on DoH/DoC Ted Lemon
- Re: [Doh] panel discussion on DoH/DoC Stephane Bortzmeyer
- Re: [Doh] panel discussion on DoH/DoC Ted Lemon
- Re: [Doh] panel discussion on DoH/DoC Shane Kerr
- Re: [Doh] panel discussion on DoH/DoC Vittorio Bertola
- Re: [Doh] panel discussion on DoH/DoC Ralf Weber
- Re: [Doh] panel discussion on DoH/DoC Ted Lemon
- Re: [Doh] panel discussion on DoH/DoC Jim Reid
- Re: [Doh] panel discussion on DoH/DoC Ted Lemon
- Re: [Doh] panel discussion on DoH/DoC Jim Reid
- Re: [Doh] panel discussion on DoH/DoC Valentin Gosu
- Re: [Doh] panel discussion on DoH/DoC Vittorio Bertola
- Re: [Doh] panel discussion on DoH/DoC Jim Reid
- Re: [Doh] [Ext] panel discussion on DoH/DoC Paul Hoffman
- Re: [Doh] panel discussion on DoH/DoC Joseph Lorenzo Hall
- Re: [Doh] [Ext] panel discussion on DoH/DoC Adam Roach
- Re: [Doh] [Ext] panel discussion on DoH/DoC Eliot Lear
- Re: [Doh] [Ext] panel discussion on DoH/DoC Paul Hoffman
- Re: [Doh] [Ext] panel discussion on DoH/DoC Ask Bjørn Hansen
- Re: [Doh] [Ext] panel discussion on DoH/DoC Jim Reid
- Re: [Doh] [Ext] panel discussion on DoH/DoC Adam Roach
- Re: [Doh] [Ext] panel discussion on DoH/DoC Adam Roach
- Re: [Doh] [Ext] panel discussion on DoH/DoC bert hubert
- Re: [Doh] [Ext] panel discussion on DoH/DoC Eliot Lear
- Re: [Doh] [Ext] panel discussion on DoH/DoC Adam Roach
- Re: [Doh] panel discussion on DoH/DoC Shane Kerr
- Re: [Doh] panel discussion on DoH/DoC Joseph Lorenzo Hall
- Re: [Doh] panel discussion on DoH/DoC Martin Thomson
- Re: [Doh] panel discussion on DoH/DoC Andrew Sullivan
- Re: [Doh] panel discussion on DoH/DoC Eric Rescorla
- Re: [Doh] panel discussion on DoH/DoC Andrew Sullivan
- Re: [Doh] panel discussion on DoH/DoC Stephen Farrell
- Re: [Doh] panel discussion on DoH/DoC Eliot Lear
- Re: [Doh] panel discussion on DoH/DoC Vittorio Bertola
- Re: [Doh] panel discussion on DoH/DoC Eric Rescorla
- Re: [Doh] panel discussion on DoH/DoC Jim Reid
- Re: [Doh] panel discussion on DoH/DoC Eric Rescorla
- Re: [Doh] panel discussion on DoH/DoC Stephen Farrell