> On Oct 7, 2020, at 2:47 AM, Éric Vyncke via Datatracker <[email protected]> > wrote: > > Éric Vyncke has entered the following ballot position for > draft-ietf-dnsop-dns-zone-digest-12: No Objection > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thank you for the work put into this document. I really like the idea of > protecting the zone integrity even at rest. > > Please find below one non-blocking COMMENT points and one nit. I would really > appreciate a reply for my comment about section 1.2. > > I hope that this helps to improve the document, > > Regards, > > -éric > > == COMMENTS == > -- Section 1.2 -- > Why is draft-ietf-dprive-xfr-over-tls not mentioned in this section as an > alternative for data on the move?
Just an oversight. The document does (did) mention "a future version of DNS-over-TLS" which I think was meant as a reference to draft-ietf-dprive-xfr-over-tls when that was just getting started. Ben pointed this out as well and I suggest changing the text to this: The Transport Layer Security protocol suite also provides channel security. The DPRIVE working group is in the process of specifying DNS Zone Transfer-over-TLS [I-D.ietf-dprive-xfr-over-tls]. > > == NITS == > -- Section 1.4.3 -- > Suggest to add "(RPZ)" after the first use of the expansion. > Done. DW
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
