Re: [dns-privacy] [Ext] Authoritative Server Operator Perspective
> On Oct 10, 2018, at 2:55 AM, Tony Finch wrote: > > Paul Hoffman wrote: >> >> 1) An interoperable specification for how to encrypt messages >> 1a) If it is layer 4, it is likely to be TLS >> 1b) If it is layer 7, it is likely to be CMS >> >> 2) An interoperable method to tell resolvers who might want encrypted >> responses how to send them. > > 3) An interoperable method to tell resolvers how to authenticate an > authoritaive server. Yes, definitely. --Paul Hoffman smime.p7s Description: S/MIME cryptographic signature ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
Re: [dns-privacy] [Ext] Authoritative Server Operator Perspective
Paul Hoffman wrote: > > 1) An interoperable specification for how to encrypt messages > 1a) If it is layer 4, it is likely to be TLS > 1b) If it is layer 7, it is likely to be CMS > > 2) An interoperable method to tell resolvers who might want encrypted > responses how to send them. 3) An interoperable method to tell resolvers how to authenticate an authoritaive server. Tony. -- f.anthony.n.finchhttp://dotat.at/ reject all prejudice and discrimination based upon race, colour, religion, age, disability, gender, or sexual orientation ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
Re: [dns-privacy] [Ext] Authoritative Server Operator Perspective
On Oct 9, 2018, at 2:28 PM, Brian Haberman wrote: > Sorry for the delay in getting this week's thread started. I would > like the focus for this week (10/8-10/14) to be on clarifying the > technical requirements from the authoritative server operator's > perspective. This will encompass the technical issues for all servers > responding to DNS queries (i.e., *LDs). 1) An interoperable specification for how to encrypt messages 1a) If it is layer 4, it is likely to be TLS 1b) If it is layer 7, it is likely to be CMS 2) An interoperable method to tell resolvers who might want encrypted responses how to send them. --Paul Hoffman smime.p7s Description: S/MIME cryptographic signature ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy