Re: Review of: draft-iab-dns-applications-01
Patrik Fältström <paf@cisco.com> Fri, 22 April 2011 19:33 UTC
Return-Path: <paf@cisco.com>
X-Original-To: ietf@ietfc.amsl.com
Delivered-To: ietf@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 70EACE0830 for <ietf@ietfc.amsl.com>; Fri, 22 Apr 2011 12:33:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.549
X-Spam-Level:
X-Spam-Status: No, score=-9.549 tagged_above=-999 required=5 tests=[AWL=0.750, BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([208.66.40.236]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s+XtPlxiM-Zz for <ietf@ietfc.amsl.com>; Fri, 22 Apr 2011 12:33:08 -0700 (PDT)
Received: from ams-iport-1.cisco.com (ams-iport-1.cisco.com [144.254.224.140]) by ietfc.amsl.com (Postfix) with ESMTP id 2C0EBE06E8 for <ietf@ietf.org>; Fri, 22 Apr 2011 12:32:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=paf@cisco.com; l=2522; q=dns/txt; s=iport; t=1303500776; x=1304710376; h=subject:mime-version:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to; bh=c6eB64sz0OWWeIdeqjbaDI69LP6BlD3dRMmPPHnVrcc=; b=jTunIsHgti+pGaqnH0Eyn1c1FmCKaR570U6G9+NV8GcRMJ1PdsaPyIBQ HndcRJmyg9Imoj1s13Moyun3flxT/x+D3w4JPfqjA4gd4jxHRCqt1mB1Y 0UIWnhhjLkNF9hdHAUzV+f7khcKyFMgRngb5xJ04IlzcYqfto3W+mj07J 0=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AvMDAFjXsU2Q/khLgWdsb2JhbAClZhQBARYmJYhwn3icUoV2BI4t
X-IronPort-AV: E=Sophos;i="4.64,255,1301875200"; d="scan'208";a="84767278"
Received: from ams-core-2.cisco.com ([144.254.72.75]) by ams-iport-1.cisco.com with ESMTP; 22 Apr 2011 19:32:55 +0000
Received: from ams3-vpn-dhcp7637.cisco.com (ams3-vpn-dhcp7637.cisco.com [10.61.93.212]) by ams-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p3MJWsW0026077; Fri, 22 Apr 2011 19:32:54 GMT
Subject: Re: Review of: draft-iab-dns-applications-01
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Patrik Fältström <paf@cisco.com>
In-Reply-To: <4DAEF008.6040101@dcrocker.net>
Date: Fri, 22 Apr 2011 21:32:54 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <CF47433F-1B69-44FA-A929-7020BAFB1C18@cisco.com>
References: <4DAEF008.6040101@dcrocker.net>
To: Olaf Kolkman <olaf@nlnetlabs.nl>, Jon Peterson <jon.peterson@neustar.biz>, Hannes Tschofenig <Hannes.Tschofenig@gmx.net>, Bernard Aboba <bernarda@microsoft.com>
X-Mailer: Apple Mail (2.1084)
Cc: IETF Discussion <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Apr 2011 19:33:09 -0000
FWIW, in general I think the document is good, and I am not a person that get hang up much things... Other people are much better on giving such comments ;-) But, I think there is one section that should have an addition, of possible change, end of section 4: > In cases where applications require these sorts of features, they are > simply better instantiated by independent application-layer protocols > than the DNS. The query-response semantics of the DNS are easily > replicated by HTTP, for example, and the objects which HTTP can carry > both in queries and responses can easily contain the necessary > structure to manage compound queries. Similarly, HTTP has numerous > ways to provide the necessary authentication, authorization and > confidentiality properties that some features require. > > Where the administrative delegations of the DNS form a necessary > component in the instantiation of an application feature, there are > various ways that the DNS can bootstrap access to an independent > application-layer protocol better suited to field the queries in > question. For example, since NAPTR records can contain URIs, those > URI can point to an external query-response service such as HTTP, > with a NAPTR service field that signal to applications that questions > of interest can be answered at that service. FWIW, I went through (together with Olaf) a registration process of the URI Resource Record Type that would help solving exactly this problem. To be a tool in between SRV and NAPTR, where a prefix on an owner do sub selection of records (like SRV, instead of inside RDATA like NAPTR), and the RDATA is ordered set of URIs (instead of more complicated NAPTR RDATA structure that require rewrite rules in the DDDS), and be more structured that storing URIs in TXT records. URI is registered as RR TYPE 256 since a while back (not too long though). So, let me suggest the last sentence is changed to the following (because I think referencing a NAPTR and because of the requirement of defining a DDDS, when in reality the only thing one want is OWNER -> URI mapping): > For example, since URI records can contain URIs, those > URIs can point to an external query-response service such as HTTP, > where the prefix of the URI is used by the applications to select > the RR SET, and because of the HTTP based services, that is of interest. Patrik
- RE: Review of: draft-iab-dns-applications-01 Murray S. Kucherawy
- Review of: draft-iab-dns-applications-01 Dave CROCKER
- Re: Review of: draft-iab-dns-applications-01 Patrik Fältström