To:
ogud@ogud.com (Ólafur Gudmundsson/DNSEXT co-chair)
Cc:
bmanning@isi.edu (Bill Manning), mcr@sandelman.ottawa.on.ca, dnssec@cafax.se
From:
Bill Manning <bmanning@isi.edu>
Date:
Mon, 10 May 2004 16:18:35 -0700 (PDT)
In-Reply-To:
<6.0.3.0.2.20040510162127.029efce8@localhost> from "Ólafur Gudmundsson/DNSEXT co-chair" at May 10, 2004 04:36:02 PM
Sender:
owner-dnssec@cafax.se
Subject:
Re: dnssec: resolver - application communication
% >% Chairs: % >% I would like to suggest that this is a big piece of work, and that it % >% should be split into into a seperate effort. We keep coming back to % >% this, and it needs to be resolved, but I don't think it needs to hold % >% up rfc2535bis. % > % > Chairs? What chairs? Is this an IETF WG mailing list? % From DNSEXT charter: % The DNSEXT Working Group actually uses an additional mailing list for % discussion of DNS Security related issues. This list is open to % all: % Discussion: dnssec@cafax.se % To Subscribe: dnssec-request@cafax.se % Archive: http://www.cafax.se/dnssec/ and % ftp://ftp.cafax.se/pub/archives/dnssec.list % % So everything you say here is part of the IETF process, this mailing is % restricted to discussions about DNSSEC and once these idea exchanges have % matured they are expected to die/migrate to namedroppers/become ID's. Darn! May have to tone down my replies (RFC 2026 gunshy!) % what you think is needed, write a requirements document(s) from different % perspectives: % Two DNS resolvers % DNS resolver logging % DNSSEC aware stub-resolver % Applications Yup. Thinking about those things as we speak. % The solution space is open at this point to discussions on: % EDNS options % New DNS Meta RR types to carry information Good, but not sufficent. % Out of band information flow is bad. Don't think so but would like to hear why you beleive so. % I want to echo what Russ Mundy said: % >On a broader basis, as more zones begin to be operated as signed zones, it % >is not possible for the designers, engineers and implementers (i.e., us) to % >figure out in advance how people will _actually_ use this thing that we're % >about to give them. I strongly believe that we need to explore some of the % >possibilities for where and how validation of responses from signed zones % >can and/or should be done. I also believe that it's much too early to % >standardizing interfaces and such but we do need to keep track of what we % >learn in the exploration Sounds like Russ is arguing for doing some experimentation before trying to run the IETF guantlet. % But it is not too early to start designing experiments. Amen. Or continuing work on experiments in progress. % % Olafur % -- --bill Opinions expressed may not even be mine by the time you read them, and certainly don't reflect those of any other entity (legal or otherwise).