Re: [Tls-reg-review] [IANA #1160167] Re: Request to register ALPN ID for DNS-over-TLS (tls-extensiontype-values)

"Salz, Rich" <rsalz@akamai.com> Wed, 15 January 2020 19:44 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2928C120935 for <tls-reg-review@ietfa.amsl.com>; Wed, 15 Jan 2020 11:44:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Al5XPC8IEChW for <tls-reg-review@ietfa.amsl.com>; Wed, 15 Jan 2020 11:44:06 -0800 (PST)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE5D7120917 for <tls-reg-review@ietf.org>; Wed, 15 Jan 2020 11:44:05 -0800 (PST)
Received: from pps.filterd (m0122331.ppops.net [127.0.0.1]) by mx0b-00190b01.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 00FJdRn1005365; Wed, 15 Jan 2020 19:43:44 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=my57JOjp0h1gVNBFB/LmlOjFPxduyA2/QpsbBt9AMVk=; b=X7M84WkgREHldzueMXgyDw9syw6xyqW4VnaFB5hGl2fOPL2pIq3wgfbkjAzOBOLMEjc/ 452onVwQps2KHX+x7U3aLi5Ij79wVfknIeqGCTPaVXUdZEjdSiUwNpM7fhwEPvpfRcFD zpEOuzxXqUDUaXflivdHyGqyEAQSX9IH28Dc6ul5KvcjIdnppDQ8+e1W7PpRjpsJsFo8 QjZrmF2/r84I8Bp0v/rYFQCKEviGhRN+j7UsDrenQfh3BaGsd1t1PGh29ponleUEFLzt dWM80M11ZUjEWOGmZEj0eZqFi9gOIgkNFKbdjLnRCdAqLqJSp7y0Lsx8iXEqbq5hzky8 iw==
Received: from prod-mail-ppoint4 (prod-mail-ppoint4.akamai.com [96.6.114.87] (may be forged)) by mx0b-00190b01.pphosted.com with ESMTP id 2xhpsmkdh6-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 15 Jan 2020 19:43:44 +0000
Received: from pps.filterd (prod-mail-ppoint4.akamai.com [127.0.0.1]) by prod-mail-ppoint4.akamai.com (8.16.0.27/8.16.0.27) with SMTP id 00FJHCix026536; Wed, 15 Jan 2020 14:43:43 -0500
Received: from email.msg.corp.akamai.com ([172.27.123.32]) by prod-mail-ppoint4.akamai.com with ESMTP id 2xfak49h12-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 15 Jan 2020 14:43:43 -0500
Received: from USMA1EX-DAG1MB5.msg.corp.akamai.com (172.27.123.105) by usma1ex-dag3mb1.msg.corp.akamai.com (172.27.123.60) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 15 Jan 2020 14:43:42 -0500
Received: from USMA1EX-DAG1MB3.msg.corp.akamai.com (172.27.123.103) by usma1ex-dag1mb5.msg.corp.akamai.com (172.27.123.105) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Wed, 15 Jan 2020 14:43:41 -0500
Received: from USMA1EX-DAG1MB3.msg.corp.akamai.com ([172.27.123.103]) by usma1ex-dag1mb3.msg.corp.akamai.com ([172.27.123.103]) with mapi id 15.00.1473.005; Wed, 15 Jan 2020 14:43:41 -0500
From: "Salz, Rich" <rsalz@akamai.com>
To: "iana-prot-param-comment@iana.org" <iana-prot-param-comment@iana.org>
CC: "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>, "ynir.ietf@gmail.com" <ynir.ietf@gmail.com>, "nick@cloudflare.com" <nick@cloudflare.com>
Thread-Topic: [IANA #1160167] Re: [Tls-reg-review] Request to register ALPN ID for DNS-over-TLS (tls-extensiontype-values)
Thread-Index: AQHVy9oR//fEsODcPUG2PwNsJzVoEKfsIHcA
Date: Wed, 15 Jan 2020 19:43:40 +0000
Message-ID: <90D667C3-CC0F-440A-8DB1-428552C02CC9@akamai.com>
References: <RT-Ticket-1160167@icann.org> <E83467EF-A186-4ED9-8299-B3A1630B793F@akamai.com> <AE40BB7D-4EDC-4D66-91B8-3D4E4AF4DF57@gmail.com> <CAFDDyk-JvH0vjZk=UNYKWvWaVc4kJcp03w7syyD7mOybSR6gNw@mail.gmail.com> <AD8E9FBE-0617-433C-B4F7-ECBC413523F8@akamai.com> <06021473-5777-439D-B9C6-7AFA2377713A@gmail.com> <rt-4.4.3-32672-1579114774-1575.1160167-37-0@icann.org> <1A9DB2FC-F98D-464A-8197-5658587EB8CE@akamai.com> <rt-4.4.3-32668-1579115673-7.1160167-9-0@icann.org> <rt-4.4.3-32672-1579116550-1665.1160167-9-0@icann.org>
In-Reply-To: <rt-4.4.3-32672-1579116550-1665.1160167-9-0@icann.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.21.0.200113
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.19.80.50]
Content-Type: text/plain; charset="utf-8"
Content-ID: <9EC23ED604235C44BB4098FC2F371664@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2020-01-15_02:, , signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 suspectscore=0 malwarescore=0 phishscore=0 bulkscore=0 spamscore=0 mlxscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1911140001 definitions=main-2001150147
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-01-15_02:2020-01-15, 2020-01-15 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxlogscore=999 malwarescore=0 mlxscore=0 lowpriorityscore=0 clxscore=1011 impostorscore=0 bulkscore=0 adultscore=0 phishscore=0 spamscore=0 priorityscore=1501 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-1910280000 definitions=main-2001150150
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/6rfh0d74i1X3cxWavlU8JJRwba8>
Subject: Re: [Tls-reg-review] [IANA #1160167] Re: Request to register ALPN ID for DNS-over-TLS (tls-extensiontype-values)
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jan 2020 19:44:09 -0000

confirmed

On 1/15/20, 2:29 PM, "Sabrina Tanamal via RT" <iana-prot-param-comment@iana.org>; wrote:

    Dear Yoav, Rich, and Nick,
    
    Can one of you confirm that we can list RFC 7858 in the "Reference" field for DNS-over-TLS?
    
    Thanks,
    Sabrina
    
    On Wed Jan 15 19:14:33 2020, jreed@akamai.com wrote:
    > Hi Sabrina,
    > 
    > I think you can just link to RFC 7858
    > (https://tools.ietf.org/html/rfc7858
    > <https://tools.ietf.org/html/rfc7858>).
    > 
    > Thanks,
    > 
    > Jon
    > 
    > > On Jan 15, 2020, at 1:59 PM, Sabrina Tanamal via RT <iana-prot-
    > > param@iana.org>; wrote:
    > >
    > > Hi Jon,
    > >
    > > How should we fill in the "Reference" field for DNS-over-TLS?
    > >
    > > Thanks,
    > >
    > > Sabrina Tanamal
    > > Senior IANA Services Specialist
    > >
    > > On Tue Jan 14 18:36:49 2020, ynir.ietf@gmail.com
    > > <mailto:ynir.ietf@gmail.com> wrote:
    > >> Sorry, I missed that IANA was not on this thread.
    > >>
    > >> IANA: since I and Nick approve, we can proceed with this.
    > >>
    > >> Yoav
    > >>
    > >>> On 14 Jan 2020, at 20:10, Reed, Jon <jreed@akamai.com>; wrote:
    > >>>
    > >>> Hi folks,
    > >>>
    > >>> Just following up on this, since I think the 3 week review period
    > >>> has
    > >>> expired.   Can we move forward with publishing this registration,
    > >>> or
    > >>> is there some periodic publication cycle?
    > >>>
    > >>> Thanks,
    > >>>
    > >>> Jon
    > >>>
    > >>>> On Dec 16, 2019, at 2:26 PM, Nick Sullivan <nick@cloudflare.com
    > >>>> <mailto:nick@cloudflare.com <mailto:nick@cloudflare.com>>> wrote:
    > >>>>
    > >>>> Fine with me.
    > >>>>
    > >>>> On Mon, Dec 16, 2019 at 9:16 AM Yoav Nir <ynir.ietf@gmail.com
    > >>>> <mailto:ynir.ietf@gmail.com>
    > >>>> <mailto:ynir.ietf@gmail.com <mailto:ynir.ietf@gmail.com>>> wrote:
    > >>>> I think it’s fine.  Nick?
    > >>>>
    > >>>>> On 16 Dec 2019, at 17:52, Salz, Rich <rsalz@akamai.com
    > >>>>> <mailto:rsalz@akamai.com>
    > >>>>> <mailto:rsalz@akamai.com <mailto:rsalz@akamai.com>>> wrote:
    > >>>>>
    > >>>>> Yoav and Nick,
    > >>>>>
    > >>>>> Could you guys approve this?  Since it came from Akamai, I want
    > >>>>> to
    > >>>>> abstain.
    > >>>>>
    > >>>>> From: "Reed, Jon" <jreed@akamai.com <mailto:jreed@akamai.com>
    > >>>>> <mailto:jreed@akamai.com <mailto:jreed@akamai.com>>>
    > >>>>> Date: Monday, December 16, 2019 at 7:56 AM
    > >>>>> To: "tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>
    > >>>>> <mailto:tls-reg-review@ietf.org <mailto:tls-reg-
    > >>>>> review@ietf.org>>";
    > >>>>> <tls-reg-review@ietf.org <mailto:tls-reg-review@ietf.org>
    > >>>>> <mailto:tls-reg-review@ietf.org <mailto:tls-reg-
    > >>>>> review@ietf.org>>>;
    > >>>>> Subject: [Tls-reg-review] Request to register ALPN ID for DNS-
    > >>>>> over-
    > >>>>> TLS
    > >>>>>
    > >>>>> Hi,
    > >>>>>
    > >>>>> I'd like to request registration of an ALPN ID for DNS-over-TLS
    > >>>>> (RFC 7858).   The ID will be used, by prior out-of-band mutual
    > >>>>> agreement, in cases where DNS-over-TLS is used over a non-
    > >>>>> standard-
    > >>>>> part (e.g. 443).    The identification sequence will be: 0x64
    > >>>>> 0x6F
    > >>>>> 0x74 ("dot").
    > >>>>>
    > >>>>> Rich Salz suggested I survey the dprive working group before
    > >>>>> doing
    > >>>>> this, and I have done so[1].  There appears to be support for
    > >>>>> this,
    > >>>>> including from one of the authors of RFC 7858, provided it's used
    > >>>>> by prior agreement on non-standard ports, and not required as
    > >>>>> part
    > >>>>> of normal use on port 853.
    > >>>>>
    > >>>>> Please let me know if you have more questions or need more
    > >>>>> information.
    > >>>>>
    > >>>>> Thanks,
    > >>>>>
    > >>>>> Jon
    > >>>>>
    > >>>>> [1] https://mailarchive.ietf.org/arch/msg/dns-
    > >>>>> <https://mailarchive.ietf.org/arch/msg/dns->
    > >>>>> privacy/iZ2rDIhFB2ZWsGC3PcdBVLGa8Do
    > >>>>> <https://urldefense.proofpoint.com/v2/url?u=https-
    > >>>>> <https://urldefense.proofpoint.com/v2/url?u=https->
    > >>>>> 3A__mailarchive.ietf.org_arch_msg_dns-
    > >>>>> 2Dprivacy_iZ2rDIhFB2ZWsGC3PcdBVLGa8Do&d=DwMFaQ&c=96ZbZZcaMF4w0F4jpN6LZg&r=_xTHEvws93UZ7jl9jhO7Pg&m=i070mdRi8IojDr3bkm87Qo7LqaTJVtz-
    > >>>>> 8A6t_AJuNj0&s=xt3xOwMGNirCRCDokBxZVoL0ybgcuYq6giiuUtVOp7w&e=>
    > >>>>>
    > >>>>> --
    > >>>>> Jon Reed
    > >>>>> jreed@akamai.com <mailto:jreed@akamai.com>
    > >>>>> <mailto:jreed@akamai.com <mailto:jreed@akamai.com>>
    > >>>>> Nameservers Service Performance
    > >>>>> Akamai Technologies