On Fri, 30 Nov 2018, Paul Hoffman wrote:
I am not sure I see a need for a different TLS/DTLS profile compared to
regular (web) based (D)TLS connections. What do you or Karl think would
be different?
(D)TLS is not the only option. Using message security instead of connection
security would eliminate the need for keeping TCP and crypto state on the
server, and could maybe reduce the amount of CPU usage as well.
Is there a draft that describes this message security? Or is that part
of the work to be started?
It seems that before dprive publishes a (D)TLS profile, that this path
should be considered first?
Paul
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
