‹ Back
Deploy360 17 November 2016

[email protected], Day 5: TLS, DNS, DHCPv6 & Annyeonghi Gaseyo

Kevin Meynell
By Kevin MeynellSenior Manager, Technical and Operational Engagement

Seoul SkylineThe final day at a IETF is usually pretty quiet for us, but not at the IETF 97. There’s four sessions of interest before we bid farewell to Seoul.

The first session on Friday morning at 09.30 KST (UTC+9), see the second part of the TLS meeting continuing on from where it left off on Tuesday. After that, it requires a bit of a juggling act as the Dynamic Host Configuration, DNS PRIVate Exchange, and CURves, Deprecating and a Little more Encryption Working Groups all start at 11.50 KST (UTC+9).

NOTE: If you are unable to attend IETF 97 in person, there are multiple ways to participate remotely.

In DHC there’s a proposed update to the DHCPv6 specification to add prefix delegation and stateless DHCPv6, along with an updated draft on DHCPv4 over DHCPv6 that provides a mechanism for dynamically configuring IPv4 over an IPv6-only network.

DPRIVE is working on securing the connections between the DNS clients and the recursive resolvers, using TLS and/or DTLS. This meeting will focus on the TLS and EDNS padding profiles whereby DNS messages are increased by a variable number of bytes to limit how much correlation can be made with well-known unencrypted packets. There will also be a discussion about Phase 2 of the group’s activities.

That just leaves CURDLE which is working on the cryptographic security of a number of protocols. Its very full agenda includes the specification of new algorithms for DNSSEC, along with those for SSH and CMS.

With that, it’s goodbye from us and onwards to Chicago. Many thanks for reading along this week… please do read our other IETF 97-related posts … and we’ll see you at IETF 98 on 26-31 March 2017!

Relevant Working Groups:

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Improving Technical Security 15 March 2019

DNS Privacy Frequently Asked Questions (FAQ)

We previously posted about how the DNS does not inherently employ any mechanisms to provide confidentiality for DNS transactions,...

Improving Technical Security 14 March 2019

Introduction to DNS Privacy

Almost every time we use an Internet application, it starts with a DNS (Domain Name System) transaction to map...

Improving Technical Security 13 March 2019

IPv6 Security for IPv4 Engineers

It is often argued that IPv4 practices should be forgotten when deploying IPv6, as after all IPv6 is a...

Join the conversation with Internet Society members around the world