commit 7a441146f41ac2eba8531e9ce5d16c1d7feacfa5
parent d86a629002f8efa4aadf4a5328a465e0989baf4b
Author: Martin Schanzenbach <schanzen@gnunet.org>
Date: Sun, 19 Dec 2021 11:52:33 +0100
privacy
Diffstat:
1 file changed, 17 insertions(+), 2 deletions(-)
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml
@@ -1920,7 +1920,7 @@ example.com = zk2
]]></artwork>
</section>
<section anchor="security" numbered="true" toc="default">
- <name>Security Considerations</name>
+ <name>Security and Privacy Considerations</name>
<section anchor="security_crypto" numbered="true" toc="default">
<name>Cryptography</name>
<t>
@@ -1977,6 +1977,20 @@ example.com = zk2
data changes. For example. the expiration time may be increased
by a single microsecond.
</t>
+ <t>
+ Record blocks are published encrypted using keys derived from the
+ zone public key and record label. Zone administrators should
+ carefully consider if the label may be public or if it should be
+ used and considered as a shared secret. Labels can be guessed by
+ an attacker in the network observing queries and responses. Given
+ a targeted zone public key, the use of well known or easily guessable
+ labels effectively result in general disclosure of the records to
+ the public.
+ If the labels and hence the records should be kept secret except to
+ those knowing a secret label and the zone in which to look, the
+ label must be chosen accordingly. It is recommended to then use a
+ label with sufficient entropy as to prevent guessing attacks.
+ </t>
</section>
<section anchor="security_abuse" numbered="true" toc="default">
<name>Abuse Mitigation</name>
@@ -2099,7 +2113,8 @@ example.com = zk2
</ul>
<t>
The registration policy for this sub-registry is "First Come First
- Served", as described in <xref target="RFC8126"/>.
+ Served". This policy is modeled on that described in <xref target="RFC8126"/>,
+ but describes the actions taken by GANA.
GANA is requested to populate this registry as listed in
<xref target="figure_rrtypenums"/>.
</t>
