>
>> Also, some folks on this list have already complained about added complexity
>> of discovery mechanisms.
>
> Please provide pointers or let them speak for themselves.
I realized after writing this that this was overly snarky and inappropriate.
It also occurred to me that you may actually speak for others.
Please accept my sincere apologies.
I would encourage more information about what (those?) folks want the use case
or flow to generally look like. Eg do they want to use a secure transport for
forwarding queries to a larger resolver which does the validation for them and
return AD=1?
Also, it is possible for different secure transports to be used in a 2 or more
secure transport chain, eg DoH to resolver, DoH to big forwarded resolver, and
DoT to authority. That does not necessarily increase complexity on the first
system.
Brian
_______________________________________________
dns-privacy mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dns-privacy
