IETF Logo Mail Archive

Re: the names that aren't DNS names problem, was Last Call: <draft-ietf-dnsop-onion-tld-00.txt>

John Curran <jcurran@istaff.org> Fri, 24 July 2015 12:54 UTC

Return-Path: <jcurran@istaff.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9098F1A1BC2 for <ietf@ietfa.amsl.com>; Fri, 24 Jul 2015 05:54:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zWXwJMqsEEHM for <ietf@ietfa.amsl.com>; Fri, 24 Jul 2015 05:54:05 -0700 (PDT)
Received: from erouter8.ore.mailhop.org (erouter8.ore.mailhop.org [54.187.218.212]) by ietfa.amsl.com (Postfix) with SMTP id 36D6D1A1B77 for <ietf@ietf.org>; Fri, 24 Jul 2015 05:54:05 -0700 (PDT)
Received: from [192.168.1.6] (unknown [108.51.98.21]) by outbound3.ore.mailhop.org (Halon Mail Gateway) with ESMTPSA; Fri, 24 Jul 2015 12:52:09 +0000 (UTC)
Subject: Re: the names that aren't DNS names problem, was Last Call: <draft-ietf-dnsop-onion-tld-00.txt>
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\))
Content-Type: multipart/signed; boundary="Apple-Mail=_5274BFD1-E166-4256-8CD4-CF3CD5D1636C"; protocol="application/pgp-signature"; micalg="pgp-sha1"
X-Pgp-Agent: GPGMail 2.5
From: John Curran <jcurran@istaff.org>
In-Reply-To: <ACE7B6AF-8FDF-42F9-BE5A-8FB45FB64AE5@virtualized.org>
Date: Fri, 24 Jul 2015 08:54:00 -0400
Message-Id: <8DF7796A-3D4E-4C3A-B00F-21BDEF935630@istaff.org>
References: <20150720192219.53802.qmail@ary.lan> <55ADF2A7.3080403@cisco.com> <A0418F96-1D79-4BE9-A72A-7A47641E4AF3@gmail.com> <CAKr6gn1apWx2M7V-O6ea2kvor7Di6=jYMh-uY2ouTsgjkV6vLw@mail.gmail.com> <20150722084204.GA15378@laperouse.bortzmeyer.org> <CAKr6gn2413-2XW8d_stw0dTmP-KsmGgFgQ3tVXEgXrXmnCiQow@mail.gmail.com> <6E97605B-C11E-4349-90FC-109E4983112C@istaff.org> <ACE7B6AF-8FDF-42F9-BE5A-8FB45FB64AE5@virtualized.org>
To: David Conrad <drc@virtualized.org>
X-Mailer: Apple Mail (2.2102)
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/CFYucH7EKAwPv2rDd8UAJfwrE5w>
Cc: ietf <IETF@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jul 2015 12:54:08 -0000

On Jul 23, 2015, at 7:52 PM, David Conrad <drc@virtualized.org> wrote:
> 
> John,
> 
> On Jul 23, 2015, at 11:45 PM, John Curran <jcurran@istaff.org> wrote:
>> On Jul 22, 2015, at 6:28 AM, George Michaelson <ggm@algebras.org> wrote:
>>> I merely noted that there are voices (myself included) who think a revision might be most useful if it abnegated the right to make these decisions and said "the root zone vests with other people: ask other people to do things”
>> A interesting assertion, given that the root zone is the entire top-level of the
>> identifier space and would specifically include "assignments of domain names
>> for technical uses”.
> 
> The root zone is NOT the entire top-level of the identifier space. It is the top-level of the subset of the identifier space that is comprised of (a) strings that are valid in the DNS protocol and (b) have been permitted by policies defined by (at least some portion of) the IETF community as documented in RFC 1591 and, later (post RFC 2860), the ICANN community through the various bottom-up, consensus-based processes that ultimately led to the Applicant's Guide Book.

Acknowledged, but will point out that there is a difference between the
technical requirements on those strings and the policy constraints that
ICANN places upon its policies.

> Even if you meant "what could potentially be placed in the root zone", this would still be limited by (a) by the simple fact that the root zone is a DNS protocol implementation artifact, not a namespace artifact, and is thus constrained by the limitations of the DNS protocol.

I was referring to what could potentially _not_ be placed in the root zone”;
i.e. including entries such as .localhost are part of the namespace, but not
part of the DNS root zone.

> Sure. Please define "technical uses". Or, more specifically, please describe how the IETF determines which string out of the universe that may potentially be placed into the root zone should be reserved and which shouldn't. That, AFAICT, is the key issue here.

It’s a technical matter within the IETF’s purview; one would hope that there
is at least some consultation with the DNS community over in ICANN so as
to minimize/mitigate any fallout.

> Some are arguing that this should be done by ICANN (whether this means the ICANN community or ICANN staff is unclear). This seems a bit surprising to me, since the same folks are typically often highly critical of ICANN's technical competence but they are implicitly demanding the ICANN community make a determination as to what is a technical use and what is not. However, I'm sure I'm misunderstanding something.

I am also surprised by such, but at the end of day, I still believe it is the IETF’s
call to make.

> Regardless, as Stephane points out, RFC 6761 is what we have now. That RFC has laid out a set of criteria by which, in most cases, the IESG (not ICANN) gets to choose whether a string should be removed from the potential universe of strings that may be eligible for allocation via the ICANN community defined processes. Given the 10+ years that it has taken the ICANN community to come up with the 300+ pages of policies detailing what are and are not eligible, I don't envy the IESG in their deliberations. However, perhaps the politics and economics that impacted the ICANN processes will be avoidable in this case.

It is possible that determining what string is _not_ eligible to appear in DNS and will be
assigned to the IETF to be used for technical purposes is a tad easier than determining
what is eligible and the process by which one party (often for commercial benefit) among
many others will receive it...

>> That’s not to say that the IETF can’t revise this position as desired, only that
>> it should be recognized as a change from documented state.
> 
> My reading of RFC 6761 is that a change of state has already occurred and people are just now realizing the implications, prompted by ONION and other non-DNS names.


It would be nice to agree or reconfirm some clear rules for how this should work (in general)
before turning the crank and executing the process for a particular instance (.e.g.   .onion)

/John

Disclaimer: my views alone.  This message will self-destruct (at heat death of the universe)

v2.23.0 | Report a Bug | By Email