[Doh] Authoritative DNS-over-TLS Operational Considerations

"Hewitt, Rory" <rhewitt@akamai.com> Thu, 11 July 2019 15:19 UTC

Return-Path: <rhewitt@akamai.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF84712004E for <doh@ietfa.amsl.com>; Thu, 11 Jul 2019 08:19:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vL1vBUeCZl_z for <doh@ietfa.amsl.com>; Thu, 11 Jul 2019 08:19:44 -0700 (PDT)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A73A11200E6 for <doh@ietf.org>; Thu, 11 Jul 2019 08:19:44 -0700 (PDT)
Received: from pps.filterd (m0050095.ppops.net [127.0.0.1]) by m0050095.ppops.net-00190b01. (8.16.0.27/8.16.0.27) with SMTP id x6BFCC0S024501 for <doh@ietf.org>; Thu, 11 Jul 2019 16:19:44 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : subject : date : message-id : content-type : mime-version; s=jan2016.eng; bh=f2M8G2qlMlSM1Z3IsPNyXHzn//+Gi64n7Ck8m94T17k=; b=mGm4oq2BjUdmPfvdX2Pth2JpVvDKZDngvD9e6NopcZGMpG8WkW0LgfdnFXeP4hlg06pT zC6u4kgH93xnSvepZ1Aq+WlF4zsuTDpAECyG8sUGAdGE0AXtbxihqZpnm5g8bKBXcTZk 55Tp1q1vcAfwNE2Ke4wvmiSY1qvWvevXh8h0nC/sLgL5+/TcXshtNXisuvkM/XICkUrM BHSxlLrAoSQMxp9nYztu5pnx0VypDncd/A3pYeBnfjlonpu2OPMxAxmow8Jg3wlNvr10 U7g52ldbtyYMWM6QwlrYqGLGcwMrsqKH6nvdNajCOwBI2P+lhAxpa148/iOGoONZ39GL EQ==
Received: from prod-mail-ppoint3 (prod-mail-ppoint3.akamai.com [96.6.114.86] (may be forged)) by m0050095.ppops.net-00190b01. with ESMTP id 2tnd5v7v0s-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <doh@ietf.org>; Thu, 11 Jul 2019 16:19:44 +0100
Received: from pps.filterd (prod-mail-ppoint3.akamai.com [127.0.0.1]) by prod-mail-ppoint3.akamai.com (8.16.0.27/8.16.0.27) with SMTP id x6BFHfSV027139 for <doh@ietf.org>; Thu, 11 Jul 2019 11:19:43 -0400
Received: from email.msg.corp.akamai.com ([172.27.27.25]) by prod-mail-ppoint3.akamai.com with ESMTP id 2tnxrrnp8s-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <doh@ietf.org>; Thu, 11 Jul 2019 11:19:42 -0400
Received: from USTX2EX-DAG1MB3.msg.corp.akamai.com (172.27.27.103) by ustx2ex-dag1mb6.msg.corp.akamai.com (172.27.27.107) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 11 Jul 2019 08:19:42 -0700
Received: from USTX2EX-DAG1MB3.msg.corp.akamai.com ([172.27.27.103]) by ustx2ex-dag1mb3.msg.corp.akamai.com ([172.27.27.103]) with mapi id 15.00.1473.004; Thu, 11 Jul 2019 10:19:42 -0500
From: "Hewitt, Rory" <rhewitt@akamai.com>
To: "doh@ietf.org" <doh@ietf.org>
Thread-Topic: Authoritative DNS-over-TLS Operational Considerations
Thread-Index: AdU3/ACyE6mH9SFQRL261ujfMhxYrw==
Date: Thu, 11 Jul 2019 15:19:41 +0000
Message-ID: <cff114f2d9cf4d46a4014c3a44d72060@ustx2ex-dag1mb3.msg.corp.akamai.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.19.112.121]
Content-Type: multipart/alternative; boundary="_000_cff114f2d9cf4d46a4014c3a44d72060ustx2exdag1mb3msgcorpak_"
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-07-11_03:, , signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=612 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1907110172
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-07-11_03:, , signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1011 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=659 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1907110172
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/zwtjEpDRTAmOq8u0MHpcZ8WuTm0>
Subject: [Doh] Authoritative DNS-over-TLS Operational Considerations
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jul 2019 15:19:47 -0000

Does the DoH WG have any input on whether 'we' should be looking into DoH for resolver->authority requests - similar to https://datatracker.ietf.org/doc/draft-hal-adot-operational-considerations/? Or does it not really apply, since we're only interested in client->resolver?

Rory