Hi all, I've just posted an updated version of Stateless DNS Encryption draft, it still has holes and unaswered questions but it's now almost implementable.
I'd really appreciate if the group could read and comment on it. Witold Kręcicki A new version of I-D, draft-krecicki-dprive-dnsenc-01.txt has been successfully submitted by Witold Krecicki and posted to the IETF repository. Name: draft-krecicki-dprive-dnsenc Revision: 01 Title: Stateless DNS Encryption Document date: 2015-10-19 Group: Individual Submission Pages: 15 URL: https://www.ietf.org/internet-drafts/draft-krecicki-dprive-dnsenc-01.txt Status: https://datatracker.ietf.org/doc/draft-krecicki-dprive-dnsenc/ Htmlized: https://tools.ietf.org/html/draft-krecicki-dprive-dnsenc-01 Diff: https://www.ietf.org/rfcdiff?url2=draft-krecicki-dprive-dnsenc-01 Abstract: The DNS is the last common Internet protocol that has no encryption scheme and therefore provides no privacy to the users. This document proposes an extensible mechanism providing encryption of DNS queries and responses with method for secure retrieval and verification of validity of encryption keys. It is independent of the underlying transport protocol. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
