Moin!
On 20 Mar 2020, at 1:13, Rob Sayre wrote:
The introduction says:
"DNS over QUIC (DoQ) has privacy
properties similar to DNS over TLS (DoT) specified in RFC7858, and
performance characteristics similar to classic DNS over UDP."
I think you might want to drop this text on performance
characteristics,
since it seems to imply DNS over UDP has better performance
characteristics.
Well DNS over UDP has better performance characteristics than DoT and
DoH.
That is not up for discussion. That is a fact. You can get way above
a million of DNS queries using regular DNS on a vanilla box, which is
simply impossible with DoH/DoT no matter how good you tune your test or
box. Latency in lab tests of DNS server usually is measured in
microseconds
and not milliseconds.
Simple common sense will tell you that an unencrypted protocol always
will
be faster than an encrypted protocol and that a stateless protocol (UDP)
will be faster then a stateful protocol (TCP), because it doesn’t need
to
have any code for checking state. QUIC BTW is based on UDP.
At least for DoH, some data seems to show that it vastly outperforms
DNS
over UDP after the 80th percentile of latency, while being just
slightly
slower below the 80th percentile.
All that this shows is network latency to different service providers,
and
the cache implementation of those (DNS cached answers will always be
faster
the non cached). This has nothing to do with protocol performance.
However protocol performance is very important when you have to
size/scale
implementations for millions of users.
So long
-Ralf
—--
Ralf Weber
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
