On Tue, 23 Mar 2021, Jim Reid wrote:
What would be the point of putting SVCB records in a TLD (or the root)? It seems like a remarkably bad idea to me.
The point of putting them into a TLD would be to be able to build up a secure private connection to the TLD nameserver, before issuing a target domain query within the TLD. There is less need of this in the root, provided the resolver uses query minimalization. This is based on my assumption that SVCB records will never be served by the parent of the domain it is for (something not everyone in the WG seems to have accepted as operational reality). Your "remarkably bad idea" needs more qualifications that can be discussed on technical and societal merit. Paul _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
