Another thread is
active at:
https://mailarchive.ietf.org/arch/msg/opsawg/04UY5rDs_ojh97_edY-a4xBPZT4I meant to wait to post this email until there had been some discussion about the acceptable-urls document. From 2018 onwards I have been working with CIRALabs on an IoT security system for home gateways. This first two revisions of the effort were very much MUD focused, and this document was written to capture my experiences with DNS lookups vs MUD names in MUD files. This document was presented at the IETF107 virtual interim meeting in April. The slides are at: https://www.ietf.org/proceedings/interim-2020-opsawg-01/slides/slides-interim-2020-opsawg-01-sessa-operational-considerations-for-use-of-dns-in-iot-devices-wslide-numbers-00 As a big part of the advice is to use the local resolver, whether via Do53, DoT or DoH, it was suggested that this advice might be better given by the Adaptive DNS Discovery (ADD). Perhaps that made more sense when it was the Applications Doing DNS BOF though. A number of discussions about this document over the summer with the ADD chairs revealed that the document does not belong in the ADD WG. The -03 version contains mostly minor editorial changes. I've decided that, even as a BCP, that it seems to still be using BCP14 language, and so should include the boilerplate. I would like the OPSAWG to consider adopting this MUD related document. It changes no bits on the wire changes to MUD or semantic changes (like my other document), rather this is guidance to IoT manufacturers. Name: draft-richardson-opsawg-mud-iot-dns-considerations Revision: 03 Title: Operational Considerations for use of DNS in IoT devices Document date: 2020-09-22 Group: Individual Submission Pages: 13 URL: https://www.ietf.org/id/draft-richardson-opsawg-mud-iot-dns-considerations-03.txt Status: https://datatracker.ietf.org/doc/draft-richardson-opsawg-mud-iot-dns-considerations/ Html: https://www.ietf.org/id/draft-richardson-opsawg-mud-iot-dns-considerations-03.html Htmlized: https://tools.ietf.org/html/draft-richardson-opsawg-mud-iot-dns-considerations-03 Diff: https://www.ietf.org/rfcdiff?url2=draft-richardson-opsawg-mud-iot-dns-considerations-03 Abstract: This document details concerns about how Internet of Things devices use IP addresses and DNS names. The issue becomes acute as network operators begin deploying RFC8520 Manufacturer Usage Description (MUD) definitions to control device access. This document explains the problem through a series of examples of what can go wrong, and then provides some advice on how a device manufacturer can best make deal with these issues. The recommendations have an impact upon device and network protocol design. {RFC-EDITOR, please remove. Markdown and issue tracker for this document is at https://github.com/mcr/iot-mud-dns-considerations.git } -- Michael Richardson <[email protected]> . o O ( IPv6 IøT consulting ) Sandelman Software Works Inc, Ottawa and Worldwide
signature.asc
Description: PGP signature
_______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
