On Tue, Sep 1, 2015 at 3:53 AM, Stephane Bortzmeyer <[email protected]> wrote:
> Interesting: > > Australian government's "DATA RETENTION Frequently Asked Questions for > Industry" > < > https://www.ag.gov.au/NationalSecurity/DataRetention/Documents/DataRetentionIndustryFAQS.pdf > > > > Note a new section on the DNS: > > 8.3. Where I operate a Domain Name System (DNS) server, what data retention > obligations do I have for this service? (NEW) > * The operation of the DNS is not a "relevant service", as it does not > carry communications or > enable communications to be carried. While a DNS server is convenient > to the carriage of > communications, it is not so central to the carriage of communications > that it enables them. > * Therefore, the operation of a DNS server does not have data retention > obligations. > * However, where the provider hosts the DNS server, it will have data > retention obligations for the > hosting of the server. > 8.4. Where I offer an internet access service, do I have to retain DNS > requests from my > customers? (NEW) > * Where a provider offers an internet access service, the internet > access service provider does not > have to keep any DNS information. > * The DNS server is a "destination on the internet" and retaining that > information would reveal > browsing history. > > That makes sense for a DNS resolver. But for the Master Server for a zone, the source data should be retained, either on that server, or if fed by another server, at the source.
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
