Ok, my opinions here, not my employer. Encryption without authentication is not ideal, but has benefits to me. Passive observers are a real concern for privacy, because we know they exist, and they are generally not detectable. - An active attacker requires more effort, and probably more computing power, Until a majority implements privacy, many passive observers will be content to observe the unencrypted traffic. - An active attacker can be detected in many ways - I might notice that I get two replies to a query, I might notice that all my connections go to the single IP of the attackers proxy, I might notice that a web site has a different IP than it did previously, etc. - In some settings (inside my company), an active attacker could be found and punished.
So for me, an automatic attempt at DNS privacy by my resolver, even if not completely reliable, might be good enough for normal usage. If I need complete security, I can put forth extra effort. -- Bob Harold
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
