This is a good question. I think we’d want to understand what the actual use case is for DNS-over-CoAP before proceeding with this, since DNS-over-DTLS would obviously be less costly to implement. The stated use case of this document is to encrypt DNS packets, which is already addressed by DNS-over-DTLS, so if that’s the only motivation for this work, it doesn’t seem like something the IETF should be doing.
I’m sure one argument for DNS-over-CoAP is that on-path caching provides some benefit, but it also quite likely breaks the semantics of DNS, so it’s not clear to me that this is actually a good idea. I suspect the thing you need to build to make this work well is a lot more complex than simply a CoAP encapsulation. If this is an important use case, then it might be better to just put a DNS cache at that point in the path; it seems unlikely that the benefit of leveraging an existing CoAP caching strategy would justify the problems such a strategy would create. I’d be curious to know if there’s a way to actually compress a DNS packet using CoAP, and that could then make the dns-over-coap use case more interesting. However, the current proposal doesn’t do that, so what it appears to really be doing is adding a layer of complexity and extra bytes to the packet. Sent from my iPad > On Aug 15, 2022, at 11:01 AM, Tim Wicinski <[email protected]> wrote: > > > DPRIVE is also a fine location. > > Has anyone implemented DNS over DTLS for your use case? > > tim > >> On Mon, Aug 15, 2022 at 6:04 AM Jaime Jiménez <[email protected]> wrote: >> CCing the right DNSOP mailing list now. >> >> >> On 15.8.2022 11.26, Jaime Jiménez wrote: >>> Dear CoRE WG, >>> >>> We would like to start the call for adoption on >>> draft-lenders-dns-over-coap. >>> The draft defines a protocol for sending DNS messages over secure CoAP >>> (DTLS and/or OSCORE). The draft was discussed during IETF114 and on IETF113 >>> and was well-received by the group. >>> >>> https://datatracker.ietf.org/doc/draft-lenders-dns-over-coap/ >>> >>> During the last IETF meeting there were no objections for adoption so we >>> confirm this now on the mailing list. Please let us know if you support >>> adopting this draft. As many people will still be on vacation, we the WGA >>> call will last a couple of weeks, ending the 1st of September. >>> >>> Note that DNSOP and DPRIVE are in the loop as the draft is relevant for >>> their working groups too. >>> >>> BR, >>> -- >>> Jaime Jiménez >>> >>> >>> _______________________________________________ >>> core mailing list >>> [email protected] >>> https://www.ietf.org/mailman/listinfo/core >> -- >> Jaime Jiménez >> _______________________________________________ >> dns-privacy mailing list >> [email protected] >> https://www.ietf.org/mailman/listinfo/dns-privacy > _______________________________________________ > core mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/core
_______________________________________________ DNSOP mailing list [email protected] https://www.ietf.org/mailman/listinfo/dnsop
