[Proposal] Namecoin/DNSSEC integration

ryanc
Posts: 147
Joined: Wed Dec 18, 2013 8:10 pm
os: linux

Re: [Proposal] Namecoin/DNSSEC integration

Post by ryanc »

sugarpuff, I't really hard to actually read your paper - id is badly lacking in technical details, and you've posted no code. I can't have a discussion with you about the merits of your tool without an understanding of what exactly it does how it works, and you haven't provided the data needed for that understanding.

ryanc
Posts: 147
Joined: Wed Dec 18, 2013 8:10 pm
os: linux

Re: [Proposal] Namecoin/DNSSEC integration

Post by ryanc »

Pagel1928 wrote: If you base64 the data, you can no longer eyeball the fingerprint to compare it to the data directly/other places it is printed out in hex.
I don't think the value of being able to visually compare data in the blockchain with the synthesized DS record is enough to spend an extra 50% representing the fingerprint.
Pagel1928 wrote: Anyway, cool stuff, and thanks for the explaination about how you have set it up I will try and get this working with nmcontrol.
I was planning on having a go at this myself, but if you want to do it, I'd be happy to collaborate. The DNS library used by nmcontrol doesn't support DNSSEC verification, so it might be a little tricky. Are you on the namecoin irc channel? Would love to chat about how to implement it.

Pagel1928
Posts: 27
Joined: Fri Sep 13, 2013 6:15 am

Re: [Proposal] Namecoin/DNSSEC integration

Post by Pagel1928 »

ryanc wrote:
Pagel1928 wrote: If you base64 the data, you can no longer eyeball the fingerprint to compare it to the data directly/other places it is printed out in hex.
I don't think the value of being able to visually compare data in the blockchain with the synthesized DS record is enough to spend an extra 50% representing the fingerprint.
Well, base64 is still 33% larger than inserting the data raw. If the size of the data is important why does your proposal still use json, and why would you pick base64 over base91 (http://base91.sourceforge.net/)?
ryanc wrote:
Pagel1928 wrote: Anyway, cool stuff, and thanks for the explaination about how you have set it up I will try and get this working with nmcontrol.
I was planning on having a go at this myself, but if you want to do it, I'd be happy to collaborate. The DNS library used by nmcontrol doesn't support DNSSEC verification, so it might be a little tricky. Are you on the namecoin irc channel? Would love to chat about how to implement it.
I go on IRC sometimes, if you catch me online we can talk about how it could be implemented. Its probably better if you just do it, and I can review the code/changes and test it.

ryanc
Posts: 147
Joined: Wed Dec 18, 2013 8:10 pm
os: linux

Re: [Proposal] Namecoin/DNSSEC integration

Post by ryanc »

Pagel1928 wrote: Well, base64 is still 33% larger than inserting the data raw. If the size of the data is important why does your proposal still use json, and why would you pick base64 over base91 (http://base91.sourceforge.net/)?
Using base64 instead of hex is easy - lots of languages have it in the standard library now. Base85 or base91 are a lot more complicated to implement. It's a simple way to save some space. Obviously, replacing JSON would allow more compact encodings, but that's fare less simple.

biolizard89
Posts: 2001
Joined: Tue Jun 05, 2012 6:25 am
os: linux

Re: [Proposal] Namecoin/DNSSEC integration

Post by biolizard89 »

ryanc wrote:
Pagel1928 wrote: Well, base64 is still 33% larger than inserting the data raw. If the size of the data is important why does your proposal still use json, and why would you pick base64 over base91 (http://base91.sourceforge.net/)?
Using base64 instead of hex is easy - lots of languages have it in the standard library now. Base85 or base91 are a lot more complicated to implement. It's a simple way to save some space. Obviously, replacing JSON would allow more compact encodings, but that's fare less simple.
I believe khal was intending to add gzip encoding support to nmcontrol (that was before he became unavailable). It's also mentioned in passing in some of the Namecoin specs (I think the readme in the GitHub and some part of the .bit 2.0 spec). gzip seems like a decent way of dealing with this as far as I can tell, and it's namespace-neutral... am I mistaken?
Jeremy Rand, Lead Namecoin Application Engineer
NameID: id/jeremy
DyName: Dynamic DNS update client for .bit domains.

Donations: BTC 1EcUWRa9H6ZuWPkF3BDj6k4k1vCgv41ab8 ; NMC NFqbaS7ReiQ9MBmsowwcDSmp4iDznjmEh5

sugarpuff
Posts: 110
Joined: Tue Oct 22, 2013 10:17 pm

Re: [Proposal] Namecoin/DNSSEC integration

Post by sugarpuff »

ryanc wrote:sugarpuff, I't really hard to actually read your paper - id is badly lacking in technical details, and you've posted no code. I can't have a discussion with you about the merits of your tool without an understanding of what exactly it does how it works, and you haven't provided the data needed for that understanding.
Yo ry-c, it's all there now: https://github.com/okTurtles/dnschain :-)

Would be interested in collaborating with you if you're interested, I am not so against DNSSEC that I think it shouldn't be used at all today. Maybe in the future it won't be necessary, but right now it can be better than nothing (if combined with Namecoin like you're doing, and your own personal server, like DNSChain).

Post Reply