On Tue, Mar 30, 2021 at 05:19:29PM -0700, Rob Sayre <[email protected]> wrote a message of 69 lines which said:
> The DNSSEC stuff stood out to me. Why is that even seen as something that > would help? Because one of the ways to improve privacy at the root is local synthesis of answers by the resolver, following RFC 8198, and it depends of DNSSEC. (Otherwise, we could just use RFC 8020.) True, it will work only for non-existing domains, which may not be too revealing but it is just one of the recommended ways, the other being QNAME minimisation (which does not depend on DNSSEC). _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
