IETF Logo Mail Archive

Re: [regext] Using RDAP as a Domain Availability Service

Andrew Newton <andy@hxr.us> Fri, 16 December 2016 13:48 UTC

Return-Path: <andy@hxr.us>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3787129CAA for <regext@ietfa.amsl.com>; Fri, 16 Dec 2016 05:48:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hxr-us.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DmOu51R-VIMa for <regext@ietfa.amsl.com>; Fri, 16 Dec 2016 05:48:36 -0800 (PST)
Received: from mail-wm0-x22f.google.com (mail-wm0-x22f.google.com [IPv6:2a00:1450:400c:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 84B6A129A66 for <regext@ietf.org>; Fri, 16 Dec 2016 05:48:22 -0800 (PST)
Received: by mail-wm0-x22f.google.com with SMTP id t79so35498973wmt.0 for <regext@ietf.org>; Fri, 16 Dec 2016 05:48:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hxr-us.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=0qAOG5XK4q64AG50XzqKB93BANN1Y7xU9r73DXySatw=; b=Cfb3G8LLUZ+wBUvVjZJ6ekhG5iCEid1OVIBUNnxBZeexj56EDOhS6yIk6dOIHxZ+7m kIn5Yf6Cztz5OIiQUZnE62W/9kVGNHLl+6v2HU4DPhjDhR7457DJMBlGGf+K+5+O4t4r y2nxcGaK7SXdUNMwqzgsXQjO5q2zdYsFUz+sOxCrEFardrA74GdpLepxJEQkD98LwDxv //bUpdOJ12KNL530T2JrgiHck7RXQ9lHCOW/AskeZxrOjVup5QdzM1hGV8vlTEYd55cx Lu8EUOq4aQMlk+IwXsnyP0KAyM1BsN0ON4T4cpX0QftKNyWA92DGQXTzadJ6nvuOK9f5 A18w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=0qAOG5XK4q64AG50XzqKB93BANN1Y7xU9r73DXySatw=; b=NnIHHppdXMriw2TJd4khVN0hdpWsCzwLryxFPUMOXv3uVtKRGTaRgy6DAcubLeIW0R T7oCkIZ9GvTQGBHb1K7FGm3Fqp0RoNfDczIcMFaTzwO4O0DDOdkBVEyr6x6hdTmiNRor FBS3ux/XDx17yRi8/arm9TyC2umtXlDkppCaybBvee6/WNLfyQMRQ6hNVjJwIhtgvqGt kXMDFV9hE/TJIL55xW8iEoeuBWV2fXkslSFXbmtOr/p7+zpUPuLNOciMMTkOdDIXfjzA 20rq/l12mN/dQNSxuNews3MAT55nfPzuxJQ5IdQ8B5C7KREA+Ge7sQvph/tzldQ6QcIS XKQQ==
X-Gm-Message-State: AIkVDXJIZJcUC6FWHS7GYyUIVsdQUAUOhmqmVrI+d78qQGYXp9lkW/jbbsfLa9dk+BSoy+JBn7A1k1aWEEgpvw==
X-Received: by 10.28.175.195 with SMTP id y186mr3433601wme.68.1481896100715; Fri, 16 Dec 2016 05:48:20 -0800 (PST)
MIME-Version: 1.0
Received: by 10.194.171.9 with HTTP; Fri, 16 Dec 2016 05:48:18 -0800 (PST)
X-Originating-IP: [2001:500:110:c00:5020:56c4:d7b4:2b9f]
In-Reply-To: <2BE5CDC1-0073-4DAF-8041-C067C51A6323@nic.br>
References: <CAAQiQRcH6d23hT5aFYUve1LC+NhijpHwOvW+26G5wJw=gHoUuA@mail.gmail.com> <2BE5CDC1-0073-4DAF-8041-C067C51A6323@nic.br>
From: Andrew Newton <andy@hxr.us>
Date: Fri, 16 Dec 2016 08:48:18 -0500
Message-ID: <CAAQiQRfEevtotMK8-95ZYOeRW6KKrkOEjM7tdPOPas=1u3WZwg@mail.gmail.com>
To: Rubens Kuhl <rubensk@nic.br>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/qKjysg10kCeeVCGUKF3L_sz1cy8>
Cc: Registration Protocols Extensions <regext@ietf.org>
Subject: Re: [regext] Using RDAP as a Domain Availability Service
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Dec 2016 13:48:38 -0000

On Fri, Dec 16, 2016 at 7:34 AM, Rubens Kuhl <rubensk@nic.br> wrote:
>
>
>
> Besides the concerns already mentioned by Michele, I add that using a TCP+TLS based mechanism adds latency that is not the best friend of a sales pipeline.
> When this topic last appeared I suggested considering DTLS transport and I repeat that suggestion, adding that an availability protocol should be less verbose than RDAP in order to not add network latency to the problem.

Rubens,

Both I and the IETF have been down the UDP as a domain availability
service road before. See RFC 5144. Given that it rarely comes up in
these conversations is probably a good indicator that such an idea is
not successful.

While I'm not a DTLS expert by any means, my understanding is that it
is TLS modified for UDP achieved most characteristically with a record
format modified from TLS. That means it still has key exchange, and
therefore the setup is not much more lightweight than TLS itself
(there will be multiple packet exchanges before app data flows). DTLS
benefits protocols where dropped packets have a different tolerance
such as real-time audio or video streaming.

Additionally, if you look at the draft you'll see examples where octet
counts are given. A simple status check can easily fit in a single TCP
packet. Given keep-alive and the bag of tricks achievable with HTTP/2,
I think latency is not much of concern.

I'll give you that it is possible to engineer a UDP/DTLS protocol that
is more performant, but in practice it will be only marginally better
yet orders of magnitude more difficult to implement.

-andy

v2.23.0 | Report a Bug | By Email