Hi dnsop, A new version of draft-ietf-iotops-iot-dns-guidelines has been published. This is based on mitigating issues seen by researchers from University College London and Inria during testing of the DNS behaviour of IoT devices. For context Andrew Losty presented this research at RIPE 91 in his presentation Towards Operational and Security Best Practices for DNS in the Internet of Things https://ripe91.ripe.net/programme/meeting-plan/sessions/52/TCAFQK/
The draft is being progressed through the iotops working group, but comments from DNS folks here are very welcome. Cheers, Jim Mozley On 2026-01-23, 13:18, "[email protected]" <[email protected]> wrote: !-------------------------------------------------------------------| This Message Is From an External Sender This message came from outside your organization. |-------------------------------------------------------------------! Internet-Draft draft-ietf-iotops-iot-dns-guidelines-01.txt is now available. It is a work item of the IOT Operations (IOTOPS) WG of the IETF. Title: IoT DNS Security and Privacy Guidelines Authors: Abhishek Mishra Andrew Losty Anna Maria Mandalari Jim Mozley Mathieu Cunche Name: draft-ietf-iotops-iot-dns-guidelines-01.txt Pages: 14 Dates: 2026-01-23 Abstract: This document outlines best current practices for Internet of Things (IoT) device providers regarding the implementation of DNS stub resolvers, with the aim of mitigating security threats, enhancing privacy, and resolving operational challenges. It also provides guidelines for network operators on mitigating the risks identified in this draft as DNS resolution includes services outside of the stub-resolver, and for device providers' management zones. The IETF datatracker status page for this Internet-Draft is: https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-iotops-iot-dns-guidelines/__;!!JYsgTRAg6ZQ!PVMCG9HohCRGbzb0sAYIKgcDWBpsy3FNV4XejaJpl2Tog5X3FCjeS62eyqI66azU55ja2vzLNP3zFkF0kiBcZvUZo2fe$ There is also an HTMLized version available at: https://urldefense.com/v3/__https://datatracker.ietf.org/doc/html/draft-ietf-iotops-iot-dns-guidelines-01__;!!JYsgTRAg6ZQ!PVMCG9HohCRGbzb0sAYIKgcDWBpsy3FNV4XejaJpl2Tog5X3FCjeS62eyqI66azU55ja2vzLNP3zFkF0kiBcZmdBRCAh$ A diff from the previous version is available at: https://urldefense.com/v3/__https://author-tools.ietf.org/iddiff?url2=draft-ietf-iotops-iot-dns-guidelines-01__;!!JYsgTRAg6ZQ!PVMCG9HohCRGbzb0sAYIKgcDWBpsy3FNV4XejaJpl2Tog5X3FCjeS62eyqI66azU55ja2vzLNP3zFkF0kiBcZjf6rYsS$ Internet-Drafts are also available by rsync at: rsync.ietf.org::internet-drafts -- Iotops mailing list -- [email protected] To unsubscribe send an email to [email protected]
_______________________________________________ DNSOP mailing list -- [email protected] To unsubscribe send an email to [email protected]
