[dns-operations] Introducing DNSCrypt
Paul Wouters
paul at cypherpunks.ca
Tue Dec 6 15:49:08 UTC 2011
On Tue, 6 Dec 2011, David Ulevitch wrote:
> Friends --
> Today we introduced a preview of DNSCrypt (http://www.opendns.com/technology/dnscrypt). The goal of DNSCrypt is to provide
> encryption of all DNS traffic between stubs and resolvers, a growing and often overlooked problem that has bugged us for
> some time. TSIG was one consideration, but ultimately, we went for a simpler route for now. Our design follows much of the
> design outlined here: http://dnscurve.org/out-implement.html
>
> It's lightweight, strives for UDP, and the code is being pushed to Github today so others can check it out.
Is it compatible with unbound/dnssec-trigger https mode?
Perhaps the IETF should define the transport for dns-over-https?
Paul
More information about the dns-operations
mailing list