Re: [regext] draft-ietf-regext-bundling-registration-06.txt - Impact of DNSSEC?
"Mack, Justin" <justin.mack@markmonitor.com> Tue, 30 October 2018 18:31 UTC
Return-Path: <justin.mack@markmonitor.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 832F0130DD2 for <regext@ietfa.amsl.com>; Tue, 30 Oct 2018 11:31:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=markmonitor.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kD9ewxAXdqXP for <regext@ietfa.amsl.com>; Tue, 30 Oct 2018 11:31:22 -0700 (PDT)
Received: from NAM04-CO1-obe.outbound.protection.outlook.com (mail-eopbgr690048.outbound.protection.outlook.com [40.107.69.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 81454127333 for <regext@ietf.org>; Tue, 30 Oct 2018 11:31:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=markmonitor.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lvYA+iJ2vG35hYnpLoVXZv05eBFMLmdeaFExzeGY1b4=; b=I8TqS3f7tuZMUpG3Wm887j+1Z5NgYxGp+KK7qlvs1rZVdz+yYzKvxDyDtdrUDYAoaTrFNA7lD2rFwoS67ParU5rK3ZTbczQ4lzOZeuywCTAcuEjIwVqJVVQ688mYuOTwGNxoaSre3os9Nc/K2RPWTRQCUWQjJQ5ak+oRy8MsaoE=
Received: from MWHPR1001MB2397.namprd10.prod.outlook.com (10.174.168.29) by MWHPR1001MB2398.namprd10.prod.outlook.com (10.174.168.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1273.27; Tue, 30 Oct 2018 18:31:20 +0000
Received: from MWHPR1001MB2397.namprd10.prod.outlook.com ([fe80::4129:cfb0:1011:a2e9]) by MWHPR1001MB2397.namprd10.prod.outlook.com ([fe80::4129:cfb0:1011:a2e9%5]) with mapi id 15.20.1273.027; Tue, 30 Oct 2018 18:31:20 +0000
From: "Mack, Justin" <justin.mack@markmonitor.com>
To: "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [regext] draft-ietf-regext-bundling-registration-06.txt - Impact of DNSSEC?
Thread-Index: AQHUcH7ABnIsNkIHUkGyqWIabMGaWQ==
Date: Tue, 30 Oct 2018 18:31:19 +0000
Message-ID: <5BD8A375.1070401@markmonitor.com>
References: <153925037464.11372.7633502458048801151@ietfa.amsl.com>
In-Reply-To: <153925037464.11372.7633502458048801151@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130330 Thunderbird/17.0.5
x-originating-ip: [209.210.178.150]
x-clientproxiedby: MWHPR19CA0024.namprd19.prod.outlook.com (2603:10b6:300:d4::34) To MWHPR1001MB2397.namprd10.prod.outlook.com (2603:10b6:301:30::29)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=justin.mack@markmonitor.com;
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; MWHPR1001MB2398; 6:eu/4phSOhxBVBwf36PySbOnN01XxQzWMZVZ6kSeyvZy4mfO9BV4CqjL5g/aWHtFcJN4j8SiYtn9lE9emSZn/J1lawEsyGMWmGX6KBbGEBXcr5fghlYrF35AZZQr5u3yfu4CBwYNBQMqG8/zbh88OPtnyBpMfBmQvERQEDNf9ukNyizEM/Mq/A42vIFgRWXuFRBleR7p8yQ8HklEbNPVBk4czW7JgkTnMhtF+MSJMMHObrwXv7GfWLf7iexyqlubLNlLPzr8R6M258n2f6p67sJxV+qW5aKYnSamKux8sXuX9wc7Xvd0LlQfG5RqP31y5FJ4HI+u8zj4WILF37tFbHI/d4xncuCjq+qyEXUmY5dO2RdiYHWPi5EbjD+f2QK/XGMQGtkV/RzE3tC6pzFFdt44psFMRwm+dV6OF4wng8It15w8gujuHm/ZuXtSkCxlkYzzZOPQu196NeWFIZIeDow==; 5:254vxYPa4ABDbCn7Agrnf4BfyVSKuFl/ReKpq619B34DG+DuinfhgV/gKcR4/kWO0LTmcTjhMQwH8GEryGgqpnbDis/Td4mY1VsnI9z+Y7ZYjrIz35jn1rKmXdgnwTLzzOuj1v0icb/M7G5V/oDPDxNw+Mst3DB1ov58G/lKD14=; 7:Ov0IyLfl2pB1gqpbM4a3bcOYEsIq/E5T+pDcIdtYztc16N8TigL58WN6y6iQLw0KhOZY5KH5RR391xQC4GhM8pit3+eUdYsjmxOo41M8yFVCxKOZ2F1A7FG62r5l/XzHu2mrWOuvBoYmxIhNHzZXdg==
x-ms-office365-filtering-correlation-id: c8af1ace-1c5b-48a1-a388-08d63e95e2ad
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(5600074)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:MWHPR1001MB2398;
x-ms-traffictypediagnostic: MWHPR1001MB2398:
x-microsoft-antispam-prvs: <MWHPR1001MB23989FE723A96A10FEB83B68F9CC0@MWHPR1001MB2398.namprd10.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(269456686620040)(10436049006162);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3231382)(944501410)(52105095)(93006095)(93001095)(3002001)(10201501046)(148016)(149066)(150057)(6041310)(20161123558120)(20161123560045)(20161123562045)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(201708071742011)(7699051)(76991095); SRVR:MWHPR1001MB2398; BCL:0; PCL:0; RULEID:; SRVR:MWHPR1001MB2398;
x-forefront-prvs: 08417837C5
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(396003)(39860400002)(376002)(346002)(199004)(189003)(71982002)(7736002)(6512007)(25786009)(6916009)(53936002)(305945005)(6306002)(5640700003)(33656002)(97736004)(1730700003)(5250100002)(68736007)(6246003)(8676002)(2900100001)(4001150100001)(256004)(6436002)(5660300001)(478600001)(229853002)(86362001)(64126003)(575784001)(8936002)(105586002)(966005)(476003)(99286004)(6506007)(386003)(65816011)(486006)(446003)(65806001)(65956001)(6486002)(66066001)(81166006)(2616005)(76176011)(186003)(3846002)(316002)(11346002)(87266011)(6116002)(52116002)(59896002)(102836004)(36756003)(81156014)(2906002)(80316001)(53546011)(71200400001)(2501003)(71190400001)(2351001)(106356001)(26005)(14454004)(58126008); DIR:OUT; SFP:1101; SCL:1; SRVR:MWHPR1001MB2398; H:MWHPR1001MB2397.namprd10.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: markmonitor.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: gnywg29orJIsRMhZNXPaw8DjMEcQScUwfO9fJq+dt2RqSLek25zgu6eZQ6pZRdBPJ+VJBL64hb3KUfYMgCWlfOjdc01Z6kPe+iH0baPhLybuBZWhNZLMzt1CEhsLoXpj6GuinsoMIa5m0j/zN2Lta9bcJPtFzJMYCt6NgRhMOVQvw2SDQPh0IVMSJ/mf7wecDPHrdcCvQWwSrHgKECDn6+CqhbfACKRWmCA25VTxPeWDB7fYk7fBQ1JGuH9/hBAHi9HxsvxO2fdI7oLVJAjNXNN+JIXrB3VPM2k9FxHutmY/I/Kr0Ferp3iRudd5zlCCITaua6DJAQN20AD50o4dfaRBuT7IBzu5Uy6TcO4R2ik=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <344FF1E3C1F1A2428D4E6ADD058AEF26@namprd10.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: markmonitor.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c8af1ace-1c5b-48a1-a388-08d63e95e2ad
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Oct 2018 18:31:20.1348 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 127fa96e-00b4-429e-95f9-72c2828437a4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR1001MB2398
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/YWoezudelsvgNpBLB6UzmdV_6ho>
Subject: Re: [regext] draft-ietf-regext-bundling-registration-06.txt - Impact of DNSSEC?
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Oct 2018 18:31:26 -0000
Greetings REGEXT, What is the impact of DNSSEC on bundled domain names in this specification? I see that most attributes are shared between domains in the bundle, such as assigned nameservers. Does this mean that DS/DNSKEY information is also shared between these domains? As a DNS administrator, I assume I must create separate zones for each domain in the bundle, if I want them all to resolve. Must I share the same Key Signing Keys (KSKs) and even Zone Signing Keys (ZSKs) between the bundled zones? Thank you. Justin Mack MarkMonitor (Apologies for the rewritten URLs below.) On 10/11/2018 03:32 AM, internet-drafts@ietf.org wrote: > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Registration Protocols Extensions WG of the IETF. > > Title : Extensible Provisioning Protocol (EPP) Domain Name Mapping Extension for Strict Bundling Registration > Authors : Ning Kong > Jiankang Yao > Linlin Zhou > Wil Tan > Jiagui Xie > Filename : draft-ietf-regext-bundling-registration-06.txt > Pages : 24 > Date : 2018-10-11 > > Abstract: > This document describes an extension of Extensible Provisioning > Protocol (EPP) domain name mapping for the provisioning and > management of strict bundling registration of domain names. > Specified in XML, this mapping extends the EPP domain name mapping to > provide additional features required for the provisioning of bundled > domain names. > > > The IETF datatracker status page for this draft is: > https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dietf-2Dregext-2Dbundling-2Dregistration_&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=7BwGRFn-P6YyGPxct5ZKg7otvozkt2_1DjybxjRGeR0&e= > > There are also htmlized versions available at: > https://urldefense.proofpoint.com/v2/url?u=https-3A__tools.ietf.org_html_draft-2Dietf-2Dregext-2Dbundling-2Dregistration-2D06&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=6041TLf1_Ae96JfqxwvLSaGB8ncwtR9_w-T0RcyDPDk&e= > https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_html_draft-2Dietf-2Dregext-2Dbundling-2Dregistration-2D06&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=95PmUhgVYQwYLfRS5qgJU1xqL4zLGt0a-tnjJU66Owo&e= > > A diff from the previous version is available at: > https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_rfcdiff-3Furl2-3Ddraft-2Dietf-2Dregext-2Dbundling-2Dregistration-2D06&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=FuWB9lzdrjpHTIA4z4xkgs2FaGdYTGMWivotrb69wdw&e= > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > https://urldefense.proofpoint.com/v2/url?u=ftp-3A__ftp.ietf.org_internet-2Ddrafts_&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=nissQXXatn7ed28hWmxicAgfpuOnSoGEK187lL577FU&e= > > _______________________________________________ > regext mailing list > regext@ietf.org > https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_regext&d=DwICAg&c=OGmtg_3SI10Cogwk-ShFiw&r=AG9XZF6h6bGkr7jkOsJt13dFth_3nZ0W8EKEBd3N1Q8&m=aFaF5o0f8sxrnIXNr-n6f34GgoarcpzONIom6hYx98M&s=-QfLw7Pg9e9yIYF1MZVjja4oOeM-dryMKDAbbiG06DM&e=
- [regext] I-D Action: draft-ietf-regext-bundling-r… internet-drafts
- Re: [regext] draft-ietf-regext-bundling-registrat… Mack, Justin
- Re: [regext] draft-ietf-regext-bundling-registrat… Jiankang Yao
- Re: [regext] draft-ietf-regext-bundling-registrat… Patrick Mevzek