Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-04.txt
"Marc Lampo" <marc.lampo@eurid.eu> Wed, 07 March 2012 08:54 UTC
Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 254C621F86A0; Wed, 7 Mar 2012 00:54:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1331110482; bh=xSrZobJl5JaKXRf1Mzue1ZL9pbB6wXhdHPsmMXTF1mg=; h=From:Cc:References:In-Reply-To:Date:Message-ID:MIME-Version: Subject:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help: List-Subscribe:Content-Type:Content-Transfer-Encoding:Sender; b=e3muR3qHsbL/cw9RpJxosdMFiXWnhiCDkX1te2HcqwOe7tyY04Eqx+7rhmJ7ouuED ab9ZwZGwZtemqRMjHZIGjwzofmvFDh6ovzfS0Z4jK79f7dii++Bt6vjDrRpRXhJdaB MYbM5ngeDGpPy4v9xOchyxMp5owmS1saMBIFVrZI=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9CA121F86A0 for <dnsext@ietfa.amsl.com>; Wed, 7 Mar 2012 00:54:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.187
X-Spam-Level:
X-Spam-Status: No, score=-0.187 tagged_above=-999 required=5 tests=[AWL=-0.329, BAYES_00=-2.599, MISSING_HEADERS=1.292, MSGID_MULTIPLE_AT=1.449]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vM-r4UX+yv41 for <dnsext@ietfa.amsl.com>; Wed, 7 Mar 2012 00:54:40 -0800 (PST)
Received: from barra.eurid.eu (barra.eurid.eu [78.41.71.12]) by ietfa.amsl.com (Postfix) with ESMTP id ECF8021F85DA for <dnsext@ietf.org>; Wed, 7 Mar 2012 00:54:39 -0800 (PST)
X-ASG-Debug-ID: 1331110760-0369490e9a59570001-uIE7UK
Received: from zimbra.eurid.eu (zcs-master.vt.eurid.eu [10.19.100.121]) by barra.eurid.eu with ESMTP id cDNvOpFiajGaEZA5 for <dnsext@ietf.org>; Wed, 07 Mar 2012 09:59:20 +0100 (CET)
X-Barracuda-Envelope-From: marc.lampo@eurid.eu
X-ASG-Whitelist: Client
Received: from localhost (localhost.localdomain [127.0.0.1]) by zimbra.eurid.eu (Postfix) with ESMTP id E7801E4078 for <dnsext@ietf.org>; Wed, 7 Mar 2012 09:54:36 +0100 (CET)
X-Virus-Scanned: amavisd-new at techmail.eurid.eu
Received: from zimbra.eurid.eu ([127.0.0.1]) by localhost (zimbra.eurid.eu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yBFyiQ0sGTPA for <dnsext@ietf.org>; Wed, 7 Mar 2012 09:54:36 +0100 (CET)
Received: from zimbra.eurid.eu (zimbra.eurid.eu [10.19.100.120]) by zimbra.eurid.eu (Postfix) with ESMTP id D5F07E4053 for <dnsext@ietf.org>; Wed, 7 Mar 2012 09:54:36 +0100 (CET)
From: Marc Lampo <marc.lampo@eurid.eu>
Cc: dnsext@ietf.org
References: <20120306162935.4172.91398.idtracker@ietfa.amsl.com>
In-Reply-To: <20120306162935.4172.91398.idtracker@ietfa.amsl.com>
Date: Wed, 07 Mar 2012 09:54:36 +0100
X-ASG-Orig-Subj: RE: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-04.txt
Message-ID: <008b01ccfc3f$ec6e69e0$c54b3da0$@lampo>
MIME-Version: 1.0
X-Mailer: Microsoft Office Outlook 12.0
X-Mailer: Zimbra 6.0.14_GA_2928 (ZimbraConnectorForOutlook/5.0.3064.18)
Thread-Index: Acz7tlEXRY5EuTLJQlOlwrinL3+ZSAAiQL0Q
Content-Language: en-za
x-antivirus-status: Clean
x-antivirus: avast!
X-Originating-IP: [172.20.5.51]
X-Barracuda-Connect: zcs-master.vt.eurid.eu[10.19.100.121]
X-Barracuda-Start-Time: 1331110760
X-Barracuda-URL: http://10.19.10.12:8000/cgi-mod/mark.cgi
X-Virus-Scanned: by bsmtpd at eurid.eu
Subject: Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-04.txt
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org
Hello, Suggestion. In 6. Traffic Analysis Considerations "... should monitor DNS query traffic and record the values of the DAU/DHU/N3U option(s) in queries. ..." --> Suggest to add that also monitored are : - (number of) DNS Queries, with EDNS0 OPT record, but without any signalling done Motivation : The difference in number of queries with and without Algo-Signalling shows how reliable the signalling information is. Kind regards, Marc Lampo Security Officer EURid (for .eu) -----Original Message----- From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] Sent: 06 March 2012 05:30 PM To: i-d-announce@ietf.org Cc: dnsext@ietf.org Subject: [dnsext] I-D Action: draft-ietf-dnsext-dnssec-algo-signal-04.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the DNS Extensions Working Group of the IETF. Title : Signaling Cryptographic Algorithm Understanding in DNSSEC Author(s) : Steve Crocker Scott Rose Filename : draft-ietf-dnsext-dnssec-algo-signal-04.txt Pages : 8 Date : 2012-03-06 The DNS Security Extensions (DNSSEC) were developed to provide origin authentication and integrity protection for DNS data by using digital signatures. These digital signatures can be generated using different algorithms. This draft sets out to specify a way for validating end-system resolvers to signal to a server which cryptographic algorithms and hash algorithms they support. A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-04.txt Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ This Internet-Draft can be retrieved at: ftp://ftp.ietf.org/internet-drafts/draft-ietf-dnsext-dnssec-algo-signal-04.txt _______________________________________________ dnsext mailing list dnsext@ietf.org https://www.ietf.org/mailman/listinfo/dnsext
- [dnsext] I-D Action: draft-ietf-dnsext-dnssec-alg… internet-drafts
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Marc Lampo
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Miek Gieben
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Miek Gieben
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Warren Kumari
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Patrik Fältström
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Scott Rose
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Scott Rose
- [dnsext] FW: I-D Action: draft-ietf-dnsext-dnssec… Marc Lampo
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Miek Gieben
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Mark Andrews
- Re: [dnsext] I-D Action: draft-ietf-dnsext-dnssec… Miek Gieben
- Re: [dnsext] FW: I-D Action: draft-ietf-dnsext-dn… Scott Rose