Last Call: <draft-ietf-dprive-bcp-op-07.txt> (Recommendations for DNS Privacy Service Operators) to Best Current Practice

The IESG <> Thu, 19 December 2019 14:31 UTC

Return-Path: <>
Received: from (localhost [IPv6:::1]) by (Postfix) with ESMTP id 2BB24120132; Thu, 19 Dec 2019 06:31:58 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <>
To: "IETF-Announce" <>
Subject: Last Call: <draft-ietf-dprive-bcp-op-07.txt> (Recommendations for DNS Privacy Service Operators) to Best Current Practice
X-Test-IDTracker: no
X-IETF-IDTracker: 6.113.0
Auto-Submitted: auto-generated
Precedence: bulk
Sender: <>
CC:,, Tim Wicinski <>,,,
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Message-ID: <>
Date: Thu, 19 Dec 2019 06:31:58 -0800
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 19 Dec 2019 14:31:58 -0000

The IESG has received a request from the DNS PRIVate Exchange WG (dprive) to
consider the following document: - 'Recommendations for DNS Privacy Service
  <draft-ietf-dprive-bcp-op-07.txt> as Best Current Practice

The IESG plans to make a decision in the next few weeks, and solicits final
comments on this action. Please send substantive comments to the mailing lists by 2020-01-02. Exceptionally, comments may
be sent to instead. In either case, please retain the beginning
of the Subject line to allow automated sorting.


   This document presents operational, policy and security
   considerations for DNS recursive resolver operators who choose to
   offer DNS Privacy services.  With these recommendations, the operator
   can make deliberate decisions regarding which services to provide,
   and how the decisions and alternatives impact the privacy of users.

   This document also presents a framework to assist writers of a DNS
   Recursive Operator Privacy Statement (analogous to DNS Security
   Extensions (DNSSEC) Policies and DNSSEC Practice Statements described
   in RFC6841).

The file can be obtained via

IESG discussion can be tracked via

No IPR declarations have been submitted directly on this I-D.

The document contains these normative downward references.
See RFC 3967 for additional information: 
    rfc8404: Effects of Pervasive Encryption on Operators (Informational - IETF stream)
    rfc8467: Padding Policies for Extension Mechanisms for DNS (EDNS(0)) (Experimental - IETF stream)
    rfc7828: The edns-tcp-keepalive EDNS0 Option (Proposed Standard - IETF stream)
    rfc8484: DNS Queries over HTTPS (DoH) (Proposed Standard - IETF stream)
    rfc6973: Privacy Considerations for Internet Protocols (Informational - IAB stream)
    rfc7766: DNS Transport over TCP - Implementation Requirements (Proposed Standard - IETF stream)
    rfc6265: HTTP State Management Mechanism (Proposed Standard - IETF stream)
    rfc8310: Usage Profiles for DNS over TLS and DNS over DTLS (Proposed Standard - IETF stream)
    rfc7626: DNS Privacy Considerations (Informational - IETF stream)
    rfc7830: The EDNS(0) Padding Option (Proposed Standard - IETF stream)
    rfc7873: Domain Name System (DNS) Cookies (Proposed Standard - IETF stream)
    rfc7858: Specification for DNS over Transport Layer Security (TLS) (Proposed Standard - IETF stream)
    rfc7871: Client Subnet in DNS Queries (Informational - IETF stream)
    draft-ietf-dprive-rfc7626-bis: DNS Privacy Considerations (None - IETF stream)
    rfc7816: DNS Query Name Minimisation to Improve Privacy (Experimental - IETF stream)