[Anima] Re: ANIMA@IETF122 - call for agenda items

: draft-ietf-anima-brski-prm (https://datatracker.ietf.org/doc/draft-yan-anima-mmcn/) Local/remote: Local BR, Zhiwei Yan ___ Anima mailing list -- anima@ietf.org To unsubscribe send an email to anima-le...@ietf.org

Re: [DNSOP] Seeking more WG Last Call reviewfordraft-ietf-dnsop-cookies

"cookies" as a optional configuration: do not use it in the normal case, and open it under attack. I mean it's better to use it when necessary as a light-weight guard for the DDoS attack. BR, Zhiwei 发件人： Ted Lemon 发送时间： 2015-08-04 11:12:11 收件人： Zhiwei Yan 抄送： dnsop; Paul H

Re: [DNSOP] Seeking more WG Last Call review fordraft-ietf-dnsop-cookies

ry easy to diffentiate the packets-with-cookies and packets-without-cookies, and the cost will be much lower compared with the DNSSEC. in this point, "cookies" is a light-weight scheme compared with DNSSEC. -cache poison: DNSSEC is better to solve this problem compared with "cookies

Re: [dns-privacy] Considering DHCP

We should solve two problems: 1) trust problem 2) encryption problem No matter whether we adopt DHCP, it's better to solve them separately. I mean that it's OK if two solutions are used for these two problems. Best Regards, Zhiwei Yan > 在 2015年4月14日，下午5:46，Linhui Sun 写道： > >

Re: [dns-privacy] Considering DHCP

+1 Best Regards, Zhiwei Yan > 在 2015年4月14日，下午5:46，Linhui Sun 写道： > > HI, Daniel > > I think there is no difference when we considering which to do first. If the > DHCP could offer a better way, that would be fine. However, there are several > problems in the aut

Re: [dns-privacy] Considering DHCP

RFC 3118 provides a scheme for this issue: http://www.rfc-base.org/txt/rfc-3118.txt 2015-04-14 Zhiwei Yan 发件人： Paul Wouters 发送时间： 2015-04-14 11:04:58 收件人： Zhiwei Yan 抄送： dns-privacy 主题： Re: [dns-privacy] Considering DHCP On Tue, 14 Apr 2015, Zhiwei Yan wrote: > Hi, all, >

Re: [dns-privacy] Considering DHCP

Hi, all, Then why not consider the DHCP? DHCP can support client authentication and can be used to configure the RS key on the authenticated client. Do you think this will help? Zhiwei Yan 2015-04-14 Zhiwei Yan 发件人： Daniel Migault 发送时间： 2015-04-14 07:20:47 收件人： Paul Wouters 抄送： dns

Re: [dns-privacy] draft-wijngaards-dnsop-confidentialdns and DDoS

draft can make use of them to authenticate the client. Best Regards, Zhiwei Yan > 在 2015年3月20日，上午12:02，Paul Wouters 写道： > >> On Thu, 19 Mar 2015, W.C.A. Wijngaards wrote: >> >> Could perhaps a different algorithm, like ED25519, provide better >> performance, and

Re: [dns-privacy] Encrypt the signalings between stub and recursiveresolvers under UDP

quest message. BR, 2015-03-11 Zhiwei Yan 发件人： W.C.A. Wijngaards 发送时间： 2015-03-11 15:31:15 收件人： dns-privacy 抄送： 主题： Re: [dns-privacy] Encrypt the signalings between stub and recursiveresolvers under UDP -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Zhiwei Yan, On 03/11/2015 04:

[dns-privacy] Encrypt the signalings between stub and recursive resolvers under UDP

this solution makes sense, the draft will be published after the IETF meeting. BR, Zhiwei Yan 2015-03-11 <>___ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy

[DNSOP] Suggestion for "any" and further

27;s better for them to have a cooperation and win-win relationship but not the simple "request/reply" interaction. Zhiwei Yan <>___ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop