For some reason this didn’t get cc’d to the dprive list. So here it
is!
John
John Dickinson
http://sinodun.com
Sinodun Internet Technologies Ltd.
Magdalen Centre
Oxford Science Park
Robert Robinson Avenue
Oxford OX4 4GA
U.K.
Forwarded message:
From: Patrick McManus <[email protected]>
To: Ben Schwartz <[email protected]>, Daniel Kahn Gillmor
<[email protected]>, DoH WG <[email protected]>, [email protected], HTTP Working
Group <[email protected]>, dnsop <[email protected]>
Subject: [Doh] Resolverless DNS Side Meeting in Montreal
Date: Mon, 9 Jul 2018 22:49:25 -0400
Hi All,
I am organizing an ad-hoc Side Meeting regarding 'Resolverless DNS' in
Montreal.
We have often talked about the benefits and concerns of DNS
information
obtained from sources that are, shall we say, less globally trusted
than a
recursive a resolver. The central use case is DoH when pushed from an
endpoint that isn't a recursive resolver but there have been other
proposals.
For example www.example.com pushes you a AAAA record for
img1.example.com.
Should you use it? What if it is for img1.img-example.com ? Do the
relationship between these domains matter? What kind of relationship
(i.e.
it could be a domain relationship, or in the context of a browser it
might
be a first-party tab like relationship, etc..)? What are the
implications
of poison? Trackers? Privacy of requests never made? Speed?
Competitive
shenanigans or DoS attacks?
This was out of scope for DoH.
*We'll do the meeting over 1 hour in the Dorchester room from 16:30 to
17:30 on Monday July 16th.*
This is a meeting of interested folks looking to see if we can agree
on
next steps - we're not going to work out the details (nor should a
side
meeting try and do so). so we'll have a tight agenda that I suggest
organizaing as follows:
1] What forms of transport could be in scope? HTTP/2 push is one such
vector, but I've heard others. Spray paint for example.
2] What needs to be considered when using such data? (signatures?
scope?
etc?)
3] Who are the stakeholders for 1 + 2?
4] Is there enough interest to explore further? Next steps as output
I hope you can come!
-Patrick
_______________________________________________
Doh mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/doh
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
