Donate
‹ Back
Deploy360 27 March 2014

New IETF Mailing List To Discuss Privacy and Confidentiality of DNS

Dan York
By Dan YorkDirector, Online Content

IETF LogoHow can we better protect the privacy and confidentiality of DNS queries? While DNSSEC protects the integrity of answers coming back from DNS (i.e. ensuring they aren’t modified in transit), what can be done to protect the confidentiality and privacy of information retrieved from DNS?  Particularly against the kind of pervasive monitoring and large-scale network sniffing we’ve become aware of?

We mentioned previously that at IETF 89 this month in London there was the “Encryption of DNS requests for confidentiality” (DNSE) BOF looking at these topics.  There was vigorous discussion during that BOF and then at the DNSOP working group meeting.  That large amount of interest has now sparked the creation of a new mailing list for all those interested in participating.  This “dns-privacy” list is public and open to anyone to subscribe:

List address: [email protected]
To subscribe: https://www.ietf.org/mailman/listinfo/dns-privacy
Archive: http://www.ietf.org/mail-archive/web/dns-privacy/

As you can see from the mailing list archive, there is already some discussion underway.  If you want some background the Internet drafts draft-bortzmeyer-dnsop-dns-privacy and draft-koch-perpass-dns-confidentiality may be useful.

While this doesn’t specifically related to the DNSSEC topic we cover here on Deploy360, it is part of the same overall space of “making DNS more secure” and so I thought it would be useful to point people to this new list.

Working together as an industry and community, we can make DNS more secure!  Please do join in and help out.

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

DPRIVE - New IETF Working Group On DNS Privacy
Deploy36021 October 2014

DPRIVE – New IETF Working Group On DNS Privacy

How can we ensure the confidentiality of DNS queries to protect against pervasive monitoring?  What kind of mechanisms can be developed...

Rough Guide To IETF 89: DNSSEC, DANE and DNS Security
Rough Guide To IETF 89: DNSSEC, DANE and DNS Security
Domain Name System (DNS)27 February 2014

Rough Guide To IETF 89: DNSSEC, DANE and DNS Security

At IETF 89 next week in London there is a huge amount of activity related to DNSSEC, DANE and DNS security...

8 Sessions About DNSSEC / DANE / DNS At IETF 89 Next Week
Deploy36027 February 2014

8 Sessions About DNSSEC / DANE / DNS At IETF 89 Next Week

Wow! IETF 89 next week in London is going to be an extremely busy week for those of us interested in DNSSEC,...

Join the conversation with Internet Society members around the world