Re: [Doh] GDPR and DoH

Watson Ladd <watsonbladd@gmail.com> Sat, 06 April 2019 19:51 UTC

Return-Path: <watsonbladd@gmail.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2E74120357 for <doh@ietfa.amsl.com>; Sat, 6 Apr 2019 12:51:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D2eKoL22Ghs7 for <doh@ietfa.amsl.com>; Sat, 6 Apr 2019 12:51:42 -0700 (PDT)
Received: from mail-lj1-x22b.google.com (mail-lj1-x22b.google.com [IPv6:2a00:1450:4864:20::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A812E120363 for <doh@ietf.org>; Sat, 6 Apr 2019 12:51:41 -0700 (PDT)
Received: by mail-lj1-x22b.google.com with SMTP id l7so7962528ljg.6 for <doh@ietf.org>; Sat, 06 Apr 2019 12:51:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=t2kOqlWI6xO8sCSMNP4irnsoBpg/kvsvTibp5jBzCbY=; b=hR5nll91Pi9wPkMCEJq5PqtwBeF0ZuNyU+lRzpObxOUUmgOv1iLfqTfCyoO+xLAg5U jkF8y0Pku25uZfhGDDJcEQDmN8zjYhoRn9zoH1xJlo+QvnYDifbfizWBKfCFMp1DH3cH qiOXY7aEMgAI/GwbRsOZErqM9jtTqbLw1WpeZgorkclwXrQUYETLdGcXOV6IVv5m+HgU wHrsVqMQ5hvhyaYspKyG3PZyJVUiuk86KTN4twuT0njjwrOb13vKyJBjb7Bq8Ef9pn5r jsYM930wAuwvETlCI+EhGp6JaI0C27e3X8ossmXjwG5TcwLpqV/75Vtuz5tAiLBxFIM0 qXMw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=t2kOqlWI6xO8sCSMNP4irnsoBpg/kvsvTibp5jBzCbY=; b=tmtPLv1oPcKDZlgi9mvAGwSC6JviULiWKvsj3iS++q3CtBRbBJznRUSVC+FkAB382Q JQv9AbZt2/csJ0mC8LtWhNBFb5YaJZuaJVSxjl94733O0Jx6I5si6aNcyi70V+yMj6wz yx3m8ma9K4UB4gupsjX9isLTrI6E3cKdy0MDSxzBHN2BG1tFNzP0NkN/6H0s0CyHQ58T sviGXgG1enETuHQvqhn044f6Cv8484MFMJr3JH4DMvqo/CQBOUPhad5deZmGeEkE9f9x 9mSCw474EDTrkGIK9oJFImMD5+r6+W32WAScHvATcKuTWyggip0hyWJ2qkSHPyVG6C+y O7JA==
X-Gm-Message-State: APjAAAUH0cqXNdZ1fRxHDDE2dqXebbl/SD0mCr9Fi1Z1+udD7Z/22Kdt ytx5ld/SI5lzfX3aW2MV1T6hGg2yaiCYq2vTlnF4hg==
X-Google-Smtp-Source: APXvYqzskCSzKGrnTtQIpqctYtxag9ximJ3LqyNsIGQgQH3QNDCL9o3TpE1AO9UnGg2dA+R4mgDD3qQeV6nODtfbkCs=
X-Received: by 2002:a2e:3c0a:: with SMTP id j10mr10723713lja.164.1554580299853; Sat, 06 Apr 2019 12:51:39 -0700 (PDT)
MIME-Version: 1.0
References: <1700920918.12557.1552229700654@appsuite.open-xchange.com> <7667c4d7-2e78-0a27-84af-cf1c00fd4897@cs.tcd.ie> <1991054337.12802.1552259263075@appsuite.open-xchange.com> <eea64b30-aad0-a030-5360-1b1484f1d0e3@huitema.net> <CAPsNn2WhjHSEHJUEL8GB6X0d24fkajgPnY4YgkOQbXjyxb5q8Q@mail.gmail.com> <CACfw2hj07TDCxK9bm0T=JguKyuCEfW2zb_yRJnewjOYL4oxdjA@mail.gmail.com> <CACsn0cmk7NbF+ti0dU7Fp0PK8Gt4P5knC5hrHVLDY59-jaYYzA@mail.gmail.com> <6030358E-24FF-4033-B0A1-AB1123FED964@rfc1035.com> <5ce0d730-aac2-95c9-fead-64cbffa03d52@cs.tcd.ie>
In-Reply-To: <5ce0d730-aac2-95c9-fead-64cbffa03d52@cs.tcd.ie>
From: Watson Ladd <watsonbladd@gmail.com>
Date: Sat, 6 Apr 2019 12:51:27 -0700
Message-ID: <CACsn0cnbm9LCb_8=vNvuqLnQMGco_SsvJ==PgQvUJBeO720xUQ@mail.gmail.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Cc: Jim Reid <jim@rfc1035.com>, DoH WG <doh@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008c355e0585e1ee30"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/OSd_O4BwkXyrWFlDxd-jvt46s2k>
Subject: Re: [Doh] GDPR and DoH
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Apr 2019 19:51:46 -0000

On Sat, Apr 6, 2019 at 11:53 AM Stephen Farrell <stephen.farrell@cs.tcd.ie>
wrote:
>
>
> Hi Jim,
>
> On 06/04/2019 19:30, Jim Reid wrote:
> >
> >
> >> On 6 Apr 2019, at 19:04, Watson Ladd <watsonbladd@gmail.com>
> >> wrote:
> >>
> >> You know you can just turn it off the same way you configure your
> >> devices on your network. I also don't understand the GDRP issue
> >> you raise: surely all DNS services have the same problems.
> >
> > Read this:
> >
https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/consent/what-is-valid-consent
>
> Too much text there for me sorry:-)
>
> FWIW, I also don't get the GDPR angle here. If it's meant as
> an issue of consent related to selection of DNS server, ISTM
> more or less the same - if by picking an ISP I'm supposed to
> have consented to the ISP's choice of recursive that same
> argument seems to apply for a browser-chosen recursive since
> the user chose the browser. (And I'd actually argue there is
> no valid consent as to choice of recursive in either case,
> since IMO a person cannot consent to use of something they
> don't know exists, and people in general do not know that
> DNS recursives exist.)

There seems to be a lot of confusion about what actually shipped. I just
opened firefox. To use DoH I had to go to settings, change the settings,
and select either the default resolver or put in a free form URL. By
contrast joining a Wifi network on my phone changes my DNS settings with
absolutely no involvement of my part whatsoever.

I'm sure Mozilla has a general consul who has considered this carefully.

>
> So can you explain the specific GDPR-related issue that you
> think is relevant?
>
> Thanks,
> S.
>
>
> >
> >  If you need further advice on GDPR, consult a Data Protection
> > Authority or a lawyer who specialises in this field.
> >
> > Note that the cast of thousands has been trimmed and this new thread
> > is not cross-posted to other WG lists.
> >
> >
> > _______________________________________________ Doh mailing list
> > Doh@ietf.org https://www.ietf.org/mailman/listinfo/doh
> >



-- 
"Man is born free, but everywhere he is in chains".
--Rousseau.