DNS Privacy
Links
DNS Privacy Project homepage
DPRIVE
getdns
NLnet Labs
Sinodun
Table of Contents |
---|
* At least one author associated with this project
DPRIVE
RFC7626 | DNS Privacy Considerations | This document describes the privacy issues associated with the use |
draft-ietf-dprive-dns-over-tlsRFC7858 | Specification for DNS over TLS* | This document describes the use of TLS to provide privacy for DNS. |
RFC7830 | The EDNS(0) Padding Option | his document specifies the EDNS(0) 'Padding' option, which allows |
draft-ietf-dprive-dtls-and-tls-profiles | Authentication and (D)TLS Profile for DNS-over-TLS and DNS-over-DTLS* | This document describes how a DNS client can use a domain name to authenticate a DNS server that uses Transport Layer Security (TLS) and Datagram TLS (DTLS). Additionally, it defines (D)TLS profiles for DNS clients and servers implementing DNS-over-TLS and DNS-over- DTLS |
https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsodtls/ | Specification for DNS over Datagram Transport Layer Security (DTLS) | |
draft-ietf-dprive-eval | Evaluation of Privacy for DNS Private Exchange* | This document describes methods for measuring the |
draft-mayrhofer-edns0-padding | The EDNS(0) Padding Option | his document specifies the EDNS(0) 'Padding' option, which allows |
DNSOP
draft-ietf-dnsop-5966bisRFC7766 | DNS Transport over TCP - Implementation Requirements* | This document specifies the requirement for support of TCP as a transport | draft-ietf-dnsop-edns-tcp-keepalive |
RFC7816 | DNS Query Name Minimisation to Improve Privacy | ||
RFC7828 | The edns-tcp-keepalive EDNS0 Option* | This document defines an EDNS0 option ("edns-tcp-keepalive") that allows DNS clients and servers to signal their respective readiness to conduct multiple DNS transactions over individual TCP sessions. |
...
RFC5246 | The Transport Layer Security (TLS) Protocol |
RFC7525 | Recommendations for Secure Use of TLS and DTLS |
RFC7413 | TCP Fastopen |
A short video is available demonstrating TCP connection re-use, pipelining, TCP Fast Open and DNS-over-TLS: DNS-over-TLS demo video
T-DNS: Connection-Oriented DNS to Improve Privacy and Security (Duane Wessels)
getdns-api implementation (Willen Toorop)
T-DNS: Connection-Oriented DNS to Improve Privacy and Security (http://www.isi.edu/publications/trpublic/files/tr-693.pdf)