Inline [TR] From: sara [mailto:[email protected]] Sent: Tuesday, October 27, 2015 5:30 PM To: Tirumaleswar Reddy (tireddy) Cc: 神明達哉; Simon Josefsson; Paul Hoffman; [email protected] Subject: Re: [dns-privacy] Start of WGLC for draft-ietf-dprive-dns-over-tls-01
On 27 Oct 2015, at 11:24, Tirumaleswar Reddy (tireddy) <[email protected]<mailto:[email protected]>> wrote: Authenticating the DNS privacy server is discussed in https://tools.ietf.org/html/draft-ietf-dprive-dnsodtls-02#section-3.2 and is applicable for both TLS and DTLS. It does and I don’t think there is anything there which is incompatible with what is said about authenticating the server in section 5 of https://datatracker.ietf.org/doc/draft-ietf-dprive-dns-over-tls-01/ However section 2 of https://tools.ietf.org/html/draft-ietf-dprive-dnsodtls-02 clearly states “The scope of this document, however, is only UDP. “ I’m saying I think creating a separate document that specifically covers authentication for both TLS and DTLS makes most sense to me and will be clearer for consumers of the documents. [TR] We can move this Section to https://tools.ietf.org/html/draft-wing-dprive-profile-and-msg-flows-00 and that will take care both (D)TLS profile for DNS privacy and authenticating the server. -Tiru Sara.
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
