Hi Ben,
At 08:12 PM 12-05-2020, Ben Schwartz wrote:
That seems quite contentious to me. Decentralization of the DNS is
_also_ a privacy threat: running your own recursive leaks your IP to
every authoritative (far worse than ECS!), pinning yourself to a
unique recursive makes you uniquely identifiable as you move across
the network, and using a recursive whose identity is unknown is
obviously a privacy concern.
I commented about "centralization" within the context of IETF work on
several occasions. My opinion is likely clouded by past
experience. With respect to privacy, I spent around two years
getting the IESG to take it seriously.
From what I recall of what is written in RFCs, DNS is described as a
distributed database. There are some advantages of it being
distributed, or if I may say so, decentralized. For example, some
countries might wish to have some degree of control over their
ccTLD. System failures do not generally affect a majority of users.
There are obviously privacy implications. Within an IETF context, it
would make surveillance easier if everything is one provider.
Regards,
S. Moonesamy
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
