On Mon, Mar 2, 2015 at 9:00 AM, Ilari Liusvaara <[email protected] > wrote:
> > I would see the point of using UDP (which means increased complexity): No it does not. UDP is a lot simpler than any of the TCP proposals. * Fewer states * Smaller library * Fewer options TLS is a big complicated specification and the open source libraries are in a woeful state. Take a look at the date the tutorial on the OpenSSL API was written. The expeditious approach to setting up a client-service binding is to leverage TLS. But that is separate from the DNS session transport question and something that can be revisited later.
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
