Re: [dnsext] WGLC on draft-ietf-dnsext-dnssec-algo-signal-05.txt
Dick Franks <rwfranks@acm.org> Mon, 26 March 2012 14:14 UTC
Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DBD3A21F8512; Mon, 26 Mar 2012 07:14:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1332771298; bh=OqkwiJRaMC4o20Uc8djfHBxYQl1KOE6oje/up6Kfp3k=; h=MIME-Version:In-Reply-To:References:From:Date:Message-ID:To:Cc: Subject:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help: List-Subscribe:Content-Type:Sender; b=aB+TiJsz/IMk1JKiAHY7NBvS1xiCgjtOo/QyL9NTuSiWjXtNLlWxlPoC+/njtXHTI k1CxrbsX09GyN6v9Zm9uD1NuQ53V6p9SjDE2auTq0dWX1/qfgbU/MbJ7qVSl68h3Kd fD90lZvbW5xIGN6+qG+lKdmnDlPBDwHYtz15IOFc=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B570121F8469 for <dnsext@ietfa.amsl.com>; Mon, 26 Mar 2012 07:14:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.676
X-Spam-Level:
X-Spam-Status: No, score=-102.676 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7gpDMHVXZxhG for <dnsext@ietfa.amsl.com>; Mon, 26 Mar 2012 07:14:55 -0700 (PDT)
Received: from mail-qc0-f172.google.com (mail-qc0-f172.google.com [209.85.216.172]) by ietfa.amsl.com (Postfix) with ESMTP id 64F2F21F8512 for <dnsext@ietf.org>; Mon, 26 Mar 2012 07:14:55 -0700 (PDT)
Received: by qcsq13 with SMTP id q13so3841180qcs.31 for <dnsext@ietf.org>; Mon, 26 Mar 2012 07:14:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date :x-google-sender-auth:message-id:subject:to:cc:content-type; bh=2t33DnTy9hVnmPBS5zJ6k+TdDXc8P2hlPCy1WFQAlaE=; b=iPWo2VZfx7E8Vy+ufrElu2OFjOXH+3ymQz3n6rdxU3shewySMMZd5LhB/4XkGP0JSU OAORw18oQk8lrnXrjk2Jj7a6J/B15QDeDkMCCSeo4mOvpyZxUNuHF2MgN9rduhRaYY50 LcW8avPtUPOat/j1MVsxylA6JY0TaOvh9KyM7b2CZ6w8ml5kQ8HA2X59ER3jETB3DNja qtOESvR2TA7TCjFGN/0A/cuQtuaofj4WbuGRxfNig7lOqRaTnUt5rz72IIQoYFpdJ48E IYicjlO1QMwpVS9Q9kbZX5RBx8ugYdcG+GQT18/fdHUxai6JD4c6kk59vIBA7CRc2ei6 OO7A==
Received: by 10.224.98.3 with SMTP id o3mr27580832qan.62.1332771294945; Mon, 26 Mar 2012 07:14:54 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.229.92.71 with HTTP; Mon, 26 Mar 2012 07:14:33 -0700 (PDT)
In-Reply-To: <18D7F4C6-544F-40CE-91EF-45C77E80AE5F@frobbit.se>
References: <18D7F4C6-544F-40CE-91EF-45C77E80AE5F@frobbit.se>
From: Dick Franks <rwfranks@acm.org>
Date: Mon, 26 Mar 2012 15:14:33 +0100
X-Google-Sender-Auth: gXr0OLnjhdCbIKaIvjpRhp2xVh0
Message-ID: <CAKW6Ri5J7U5CtcKhX4eWKbkShgMr0ZRdjhne_dMbMiqGgQrbtg@mail.gmail.com>
To: Patrik Fältström <paf@frobbit.se>
Cc: "<dnsext@ietf.org>" <dnsext@ietf.org>
Subject: Re: [dnsext] WGLC on draft-ietf-dnsext-dnssec-algo-signal-05.txt
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============4992081234402294907=="
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org
Patrik,
Editorial nits
[1. para 4, line 7] revise wording
... determine when to stop signing with the old algorithm(s) when
the server sees ...
... determine when to stop signing with a superseded algorithm when the
server sees ...
[1. para 5, last line] revise wording
... can signal a set of algorithms and hashes it implements.
... client query can signal the set of algorithms and hashes which it
implements.
[2. para 1, line 6] spelling
independly
independently
[2. para 4] simplify wording
LIST-LENGTH is the length of the list of digital signature or hash
algorithms in octets. Since each algorithm and hash codes are 1
octet long so this value is the number of octets.
LIST-LENGTH is the length of the list of digital signature or hash
algorithm codes.
Each algorithm code occupies a single octet.
[2. para 5, line 3] revise wording
... that the client indicates as understood.
... that the client declares to be supported.
[2. para 6, last line] delete redundant words
... in a reasonable potential future example.
The reasonableness of the example is a matter of taste, flavoured by
uncertain numbers.
[3.1. line 3] simplify wording
... depends on whether the stub resolver performs its own
DNSSEC validation or doesn't perform its own validation.
... depends on whether the stub resolver elects to perform its own
DNSSEC validation.
[3.2. line 5] key bounce
This way thee validating ...
[3.2. line 7] revise wording
... order of preference, with the most preferred algorithm(s) first ...
... order of preference, with the most preferred algorithm first ...
This is describing the ordering direction of each (singular) list;
first element is singular.
[6. para 1, line 6] fix garbled wording
This monitoring can be used to measure the deployment of client code
that implements (and signals) certain algorithms. The Exactly how to
capture DNS traffic and measure new algorithm adoption is beyond the
scope of this document.
This monitoring can be used to measure the deployment of client code
that implements (and signals) specific algorithms. Description of the
techniques used to capture DNS traffic and measure new algorithm
adoption is beyond the scope of this document.
[6. para 2, line 9]
... until a large majority of clients signal that they understand
the new algorithm.
... until a large majority of clients signal that they recognise the
new algorithm.
--Dick
2012/3/26 Patrik Fältström <paf@frobbit.se>
> All,
>
> First of all, please note the version number I want you to (re-)read. It
> is posted basically "now", but for the ones that want to check before it
> ends up in the repository, I have also attached a copy.
>
> This version is, I think, answering all questions all individuals have had
> that I have managed to track. I have had private conversation with many of
> you that had comments after version -02, and your comments have been passed
> to the editors.
>
> I already have enough individuals that have said they have read this draft
> and support it to be able to forward it towards the IESG, so this WGLC only
> have as a goal to ensure there are no more issues.
>
> I would like to thank, among others, Miek Gieben, Mark Andrews, Marc
> Lampo, Bill Manning, Warren Kumari, Ed Lewis and Dick Franks for the review
> and suggested changes.
>
> Patrik
>
>
> _______________________________________________
> dnsext mailing list
> dnsext@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsext
>
>
_______________________________________________ dnsext mailing list dnsext@ietf.org https://www.ietf.org/mailman/listinfo/dnsext
- [dnsext] WGLC on draft-ietf-dnsext-dnssec-algo-si… Patrik Fältström
- Re: [dnsext] WGLC on draft-ietf-dnsext-dnssec-alg… Miek Gieben
- Re: [dnsext] WGLC on draft-ietf-dnsext-dnssec-alg… Dick Franks
- Re: [dnsext] WGLC on draft-ietf-dnsext-dnssec-alg… Mark Andrews