On Mon, Dec 16, 2019, at 22:55, Vladimír Čunát wrote: > Trust model: I could imagine each client having a pre-configured *list* > of TLS-certificate names trusted for the purpose of encrypted DNS. You > might add your ISP's in there or you might not.
Yes, this is approximately the model I had in mind. And it was one Tom mentioned. _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
