[New-wg-docs] I-D Action: draft-ietf-dprive-unilateral-probing-00.txt

internet-drafts@ietf.org Mon, 07 March 2022 17:54 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: new-wg-docs@ietf.org
Delivered-To: new-wg-docs@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 675FA3A12EE for <new-wg-docs@ietf.org>; Mon, 7 Mar 2022 09:54:20 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: new-wg-docs@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.46.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <164667566039.16942.5326555735550679458@ietfa.amsl.com>
Date: Mon, 07 Mar 2022 09:54:20 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/new-wg-docs/M3XOEDWSiv5egg2xmXQZp9dx_do>
Subject: [New-wg-docs] I-D Action: draft-ietf-dprive-unilateral-probing-00.txt
X-BeenThere: new-wg-docs@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "New \(-00\) Working Group Documents" <new-wg-docs.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/new-wg-docs>, <mailto:new-wg-docs-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/new-wg-docs/>
List-Post: <mailto:new-wg-docs@ietf.org>
List-Help: <mailto:new-wg-docs-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/new-wg-docs>, <mailto:new-wg-docs-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Mar 2022 17:54:27 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the DNS PRIVate Exchange WG of the IETF.

        Title           : Unilateral Opportunistic Deployment of Encrypted Recursive-to-Authoritative DNS
        Authors         : Daniel Kahn Gillmor
                          Joey Salazar
	Filename        : draft-ietf-dprive-unilateral-probing-00.txt
	Pages           : 23
	Date            : 2022-03-07

Abstract:
   This draft sets out steps that DNS servers (recursive resolvers and
   authoritative servers) can take unilaterally (without any
   coordination with other peers) to defend DNS query privacy against a
   passive network monitor.  The steps in this draft can be defeated by
   an active attacker, but should be simpler and less risky to deploy
   than more powerful defenses.  The draft also introduces (but does not
   try to specify) the semantics of signalling that would permit defense
   against an active attacker.

   The goal of this draft is to simplify and speed deployment of
   opportunistic encrypted transport in the recursive-to-authoritative
   hop of the DNS ecosystem.  With wider easy deployment of the
   underlying transport on an opportunistic basis, we hope to facilitate
   the future specification of stronger cryptographic protections
   against more powerful attacks.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-dprive-unilateral-probing/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-dprive-unilateral-probing-00.html


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts