Re: [dns-privacy] Root Server Operators Statement on DNS Encryption

[Andrew Campling <andrew.campling@419.consulting>]

On 31/03/2021 22:49, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:

> Hiya,
>
> On 31/03/2021 22:43, Bill Woodcock wrote:
>> Then those RFCs should be worded carefully so that they don’t suggest 
>> that the thing they’re proposing is generally applicable.
>> Particularly to the roots.  Which are actual critical infrastructure.
> There was a load of mail earlier today on just that.
>
> The real issue IMO is not querying the root servers but
> the TLDs. There are still performance issues to consider
> of course but the business model and the value to the
> person somewhere behind the recursive are quite different.
> 
> I really wish we could stop all mixing up the roots with
> the TLDs in this discussion.

I thought that the Root Server Operators Statement on DNS Encryption helped clarify a particular lack of interest from that group.  It made me wonder whether there has been any dialogue with TLD operators to establish whether they are interested in adopting encryption, as well as to understand the operational challenges that may need to be overcome to make any proposed solutions deployable?  

My apologies if the stance of TLD operators is well known to most in this group, however some of the recent debate on the list seems to suggest that the position of TLD operators is unclear.  To echo and extend a point made in a different post, what is the problem being solved, do sufficient TLD operators believe that it needs to be solved and is the proposed solution one that they are likely to deploy?  

Andrew