[DNSOP] draft-ietf-dnsop-edns-client-subnet-00 Birthday Attack

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Please correct me if I'm wrong. I think there is a problem in this draft. Although the draft explicitly addresses Birthday Attacks it is still vulnerable. Section 10.2 (Birthday Attacks) states: > To counter this, every edns-client-subnet option in a

Re: [DNSOP] Adoption and Working Group Last Call for draft-ietf-dnsop-dns-terminology/

On Mon, Apr 20, 2015 at 09:57:06AM -0700, Paul Hoffman wrote a message of 98 lines which said: > The definition in the draft includes ideas from RFC 5625, which > seems to be the much more common definition of "forwarder" used > today. However, the WG is free to define this however they want.

Re: [DNSOP] Adoption and Working Group Last Call for draft-ietf-dnsop-dns-terminology/

On 04/22/2015 02:33 PM, Stephane Bortzmeyer wrote: [snip]. >> Please propose specific wording for the merge so the WG can see if >> they like it better. > Policy-implementing resolver -- A resolver that changes some answers > it returns based on policy criteria, such as to prevent access to > mal

[DNSOP] Interim Meeting on Special Names and RFC 6761

All We've finalized the Interim Meeting to discuss the questions around RFC 6761 and the "Special Names" Registry. Details: Date: Tuesday, 12 May 2015 Time: 1600-1800 UTC (1200-1400 EDT) An agenda is coming together, but all drafts that address this issue are currently up for discussion

Re: [DNSOP] Adoption and Working Group Last Call for draft-ietf-dnsop-dns-terminology/

Stephane Bortzmeyer wrote: > On Mon, Apr 20, 2015 at 09:57:06AM -0700, > Paul Hoffman wrote > a message of 98 lines which said: > > > >> Passive DNS -- A mechanism to collect large amounts of DNS data > > >> by storing queries and responses from recursive servers. > > > > > > Most passive DNS

[DNSOP] DNSOP WG Virtual Interim Meeting: 12 May 2015

The DNS Operations (DNSOP) Working Group will hold a virtual meeting to discuss the questions around RFC 6761 and the "Special Names" Registry. Date: Tuesday, 12 May 2015 Time: 1600-1800 UTC (1200-1400 EDT) JOIN WEBEX MEETING: https://ietf.webex.com/ietf/j.php?MTID=me1390ebc21ee8ab1b9dfe4a4363cff

Re: [DNSOP] negative-trust-anchors-02

On Wed, Mar 18, 2015 at 11:45 PM, Andrew Sullivan wrote: > Dear colleagues, > > I have read draft-ietf-dnsop-negative-trust-anchors-02. I have some > comments. > > To begin with, I support, very strongly, getting this basic idea > documented and published soon. Yay! Us too! > Recent commentary

[DNSOP] I-D Action: draft-ietf-dnsop-negative-trust-anchors-03.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Domain Name System Operations Working Group of the IETF. Title : Definition and Use of DNSSEC Negative Trust Anchors Authors : Paul Ebersman