Donate
DPRIVE experimental service debuts @ IETF 99 Thumbnail
‹ Back
Deploy360 24 August 2017

DPRIVE experimental service debuts @ IETF 99

By Kevin Meynell Content and Resource Manager

TLS badgeThe IETF is not only a place to discuss the development of Internet protocols, but also offers a place for developers and operators to ‘eat their own dog food’ on the meeting network. And given that the IETF DPRIVE Working Group has published some RFC specifications over the past year, the most recent IETF 99 in Prague provided a timely opportunity to run an experimental DNS-over-TLS service.

DNS queries and responses are currently transmitted over the Internet entirely in the clear, and whilst DNSSEC is able to authenticate a response from a DNS server, it does not actually encrypt the transmitted information. The aim of DPRIVE is therefore to add mechanisms to provide confidentiality to DNS transactions and address concerns about pervasive monitoring using TLS or DTLS to encrypt queries and responses between DNS clients and servers.

Some information about how the experimental DNS-over-TLS service was set-up on the IETF network can be found on the IETF99 Experiments page, but the DNS Privacy Project offers a list of experimental servers supporting both IPv4 and IPv6 if you want to try this out yourself. You also can check out their up status.

‹ Back

Related articles

RFC 8094: DNS over DTLS published
Deploy3606 April 2017

RFC 8094: DNS over DTLS published

RFC 8094 - DNS over Datagram Transport Layer Security (DTLS) - was recently published as an experimental specification. This was the...

Rough Guide to IETF 99: DNS Privacy and Security, including DNSSEC
Rough Guide to IETF 99: DNS Privacy and Security, including DNSSEC
Domain Name System (DNS)11 July 2017

Rough Guide to IETF 99: DNS Privacy and Security, including DNSSEC

There's a good bit of DNS secrurity and privacy activity happening at IETF 99 next week in Prague, although not all of...

Rough Guide to IETF 97: DNSSEC, DANE and DNS Privacy and Security
Rough Guide to IETF 97: DNSSEC, DANE and DNS Privacy and Security
Domain Name System (DNS)11 October 2016

Rough Guide to IETF 97: DNSSEC, DANE and DNS Privacy and Security

DNS privacy will get a good bit of focus at the IETF 97 meeting in Seoul with a special tutorial as...

Join the conversation with Internet Society members around the world