On May 25, 2021, at 17:16, Tim Wicinski <[email protected]> wrote: > > > All > > The authors took the advice from the working group and extracted the more > common features > into a separate document. The chairs would like the working group to give > some comments, as > we feel a document like this should be considered for adoption.
I had not responded on purpose. As indicated in the past, I find the gains of encrypting but not authenticating authoritative servers not very useful. We have an existing authentication mechanism for authenticating authoritative servers (DNSSEC) that we should spend our energy on promoting instead of writing more RFCs about securing the transport leaving the transported data vulnerable to manipulation by an ever more centralized resolver farm. Paul _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
