We can disagree about what the WG can and cannot change, but the are really not necessary. You say that SVCB in the parent glue is sufficient for your needs, and it certainly is sufficient for those of unauthenticated encryption. I think that authoritative SVCB in the child would also be as good of a signal for unauthenticated encryption as the TLSA that we used based on the WG input.
--Paul Hoffman
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
