[RSSAC Caucus] [Ext] Re: FOR REVIEW: DRAFT RSSAC Advisory on Rogue DNS Root Server Operators

Steve Sheng steve.sheng at icann.org
Tue May 18 11:26:04 UTC 2021 

Thank you, Zhiwei for the comments,

The WP had a call and considered each of them and here is how they are addressed (see below).

Let me know if you have any questions regarding them, or have further feedback.

Thank you very much again.

Best
Steve

From: YAN Zhiwei <yanzhiwei at cnnic.cn>
Date: Wednesday, April 7, 2021 at 10:50 PM
To: Steve Sheng <steve.sheng at icann.org>, "rssac-caucus at icann.org" <rssac-caucus at icann.org>
Subject: [Ext] Re: [RSSAC Caucus] FOR REVIEW: DRAFT RSSAC Advisory on Rogue DNS Root Server Operators

Hi, Steve and all,
The followings are some of my comments on this draft:

  1.  In Section 1, “The purpose of the root server system (RSS) is to give authoritative answers to queries about the DNS root”. This may be described as “The purpose of the root server system (RSS) is to give authoritative answers to queries about the DNS Top-Level Domains (TLDs) (or root zone)”. Because “DNS root” may lead people to understand it as “root servers” as “Root Hind File” acts.

>> editor: Thank you. This sentence is changed to “The purpose of the root server system (RSS) is to provide responses to queries for data in the root zone.”

2)  “RSS” is defined in the first paragraph of Section 1, it can be used directly in the following contents as the abbreviation of “root server system”, for example in the 4th paragraph of Section 1.

>> editor: Thank you. This is fixed.

3)  This document mainly defines the rogue activities of RSO. As emphasized in Subsection 2.2, it cannot or is difficult to be used to judge or determine the intent of these behaviors or even mitigate these behaviors. So, in 4th paragraph of Section 1, the description “Future RSS governance bodies may use this document for developing a more complete definition of rogue RSO actions and will ultimately be the authority in determining subjective factors, such as intent, when judging the actions of an RSO.” should be weakened or without pointing out its application in “determining subjective factors, such as intent, when judging the actions of an RSO”.


>> editor: The WP had a discussion, and this is changed to “Future RSS governance bodies may use this document for developing a more complete definition of rogue RSO actions.”

4)  “Incorrect additional answers” part in Section 3: “extra NS records that are not the root zone” should be “extra NS records that are not in the root zone”.

>> Editor: Thank you, this is corrected.

5)  The currently listed cases are mainly the resolution service, should we consider the behavior of root zone management? for example, the RSO does not actively or timely update the root zone file.

>> Editor: The WP discussed this on the call. Regarding the behavior of root zone management such as not timely serve the root zone file, these are captured as part of RSSAC047.

6)   As in the “Intentionally degraded service” part, should we consider the behavior of link quality manipulation such as shut down the IPv4 or IPv6 connection, UDP or TCP connection and so on, except the dropping or delaying packets for degrading responses?

>> Editor: The WP discussed this and decided not go into specifics on how the service can be degraded. Reasons are (1) the term “degrade service” covers a range of scenarios. It is good to describe in general terms, (1) creative people can think of many ways to degrade the service, over-specifying may limit the applicability of this scenario.

BR,
Zhiwei Yan


From: Steve Sheng<mailto:steve.sheng at icann.org>
Date: 2021-04-07 23:04
To: rssac-caucus at icann.org<mailto:rssac-caucus at icann.org>
Subject: [RSSAC Caucus] FOR REVIEW: DRAFT RSSAC Advisory on Rogue DNS Root Server Operators
Dear RSSAC Caucus,

   On behalf of Ken Renard, please see included (and attached) for your review the draft RSSAC Advisory on Rogue DNS Root Server Operators.

  Given the evolution of root server system (RSS) governance, this document aims to inform future RSS governance bodies on the types of root server operator (RSO) activity that might be considered rogue and the risks that these activities may pose to the Internet community.

  The PDF version is attached to this email. The google doc link for the document is at: https://docs.google.com/document/d/1XS2dIl_Sv1f7e4pA19QHnHEmLgRSkgEI2-zD7Tp0hog/edit?usp=sharing [docs.google.com]<https://urldefense.com/v3/__https:/docs.google.com/document/d/1XS2dIl_Sv1f7e4pA19QHnHEmLgRSkgEI2-zD7Tp0hog/edit?usp=sharing__;!!PtGJab4!oFmllhQQn51mKvTSew-PEEkbm0I1oYDPjCMr05-bDvEyT-WjoGlCGn73EdZs8wX5GielK4Q$>

  Please kindly review and provide your feedback by Monday 19 April.

Best
Steve Sheng



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mm.icann.org/pipermail/rssac-caucus/attachments/20210518/33a55cec/attachment-0001.html>

More information about the rssac-caucus mailing list