Re: [dns-privacy] User Perspective
All, I would like the focus for this week (9/24-9/30) to be on clarifying the requirements from the user's perspective. So far, I have seen: * DNS transaction privacy, if possible * User willingness to send PII if transaction is encrypted Do others have additional requirements? If you agree with the above, could you describe a scenario to highlight the requirements? Regards, Brian On 7/19/18 2:23 PM, Brian Haberman wrote: > This thread is for discussion of the user perspective of DNS privacy > between the recursive resolver and authoritative servers. > > - Focus on *what* is needed. > - Avoid *how* to achieve it. > - Consider both ends of DNS the exchange. > - Scenarios will frame the discussion. > > > > ___ > dns-privacy mailing list > dns-privacy@ietf.org > https://www.ietf.org/mailman/listinfo/dns-privacy > signature.asc Description: OpenPGP digital signature ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
[dns-privacy] Moving discussions along
All, The threads for discussing the various perspectives on the recursive-to-authoritative problem space have fizzled out. Rather than having a series of parallel discussions going on, I am going to try and get a focus on one area per week. Hopefully, this will get more people involved in the discussion to help clarify the requirements for any proposed solutions. Please contribute to the discussions so that we can prepare for Bangkok. Regards, Brian signature.asc Description: OpenPGP digital signature ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
Re: [dns-privacy] User Perspective
On 9/24/18 11:58 AM, Amelia Andersdotter wrote: > I have difficulties seeing how a user (within the meaning of individual > internet consumer) has any practical choice to other than to share PII > with a DNS provider? It's not so much about "willingness" as it is about > "feeling comfortable with". I think it might be helpful to scope the data under discussion and identify what counts as PII under the context of the DNS. This may be outside the scope of the current discussion but I've been somewhat concerned lately by some of the assertions being made about who to trust (the "who" in this case being recursives) in privacy-protected DNS transactions. The assertions tend to be fairly global but it seems to me that in at least some cases (for example, secure messaging) the application will have some fairly specific requirements around privacy that it's unwilling to leave to the default OS configuration, the browser, the service provider, etc. Melinda ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
Re: [dns-privacy] User Perspective
On 2018-09-24 16:08, Brian Haberman wrote: > All, > I would like the focus for this week (9/24-9/30) to be on > clarifying the requirements from the user's perspective. So far, I have > seen: > > * DNS transaction privacy, if possible > * User willingness to send PII if transaction is encrypted > > Do others have additional requirements? I propose to add: * Data management practises (i.e. profiling, advertisement, re-selling, etc) > If you agree with the above, could you describe a scenario to highlight > the requirements? I have difficulties seeing how a user (within the meaning of individual internet consumer) has any practical choice to other than to share PII with a DNS provider? It's not so much about "willingness" as it is about "feeling comfortable with". best regards, Amelia > Regards, > Brian > > On 7/19/18 2:23 PM, Brian Haberman wrote: >> This thread is for discussion of the user perspective of DNS privacy >> between the recursive resolver and authoritative servers. >> >> - Focus on *what* is needed. >> - Avoid *how* to achieve it. >> - Consider both ends of DNS the exchange. >> - Scenarios will frame the discussion. >> >> >> >> ___ >> dns-privacy mailing list >> dns-privacy@ietf.org >> https://www.ietf.org/mailman/listinfo/dns-privacy >> > > ___ > dns-privacy mailing list > dns-privacy@ietf.org > https://www.ietf.org/mailman/listinfo/dns-privacy -- Amelia Andersdotter Technical Consultant, Digital Programme ARTICLE19 www.article19.org PGP: 3D5D B6CA B852 B988 055A 6A6F FEF1 C294 B4E8 0B55 ___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy