On Oct 6, 2014, at 8:52 AM, Stephane Bortzmeyer <[email protected]> wrote:
> On Mon, Oct 06, 2014 at 08:03:56AM -0700, > Paul Hoffman <[email protected]> wrote > a message of 93 lines which said: > >> Two of the operational problems with adding encryption between >> iterative (recursive) resolvers and authoritative servers that keep >> being brought up are DoS-by-crypto and establishment of trust. > > Careful: the future working group is not about encryption but about > confidentiality (the charter does not mention explicitely > encryption). Encryption is just one possible tool in the toolbox. Fully agree, but so far, that's all people have wanted to focus on. I find that unfortunate. > qname minimization, for instance, is another one. I would like to be > sure the charter does not prevent the working group to work on it. I agree, but I also think that document does not need to be process in the DPRIVE WG. In fact, it would be better done in DNSOP, and could (and should!) be done much sooner than "after we solve the client-to-recursive privacy problem". I said as much in an earlier message to the IESG about DPRIVE. --Paul Hoffman _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
