z-logo
open-access-imgOpen Access
Specification for DNS over Transport Layer Security (TLS)
Author(s) -
Zhichao Hu,
Li Zhu,
John Heidemann,
Allison Mankin,
Duane Wessels,
Paul Hoffman
Publication year - 2016
Publication title -
rfc
Language(s) - English
Resource type - Reports
DOI - 10.17487/rfc7858
Subject(s) - transport layer security , computer science , computer security , computer network , encryption
This document describes the use of Transport Layer Security (TLS) toprovide privacy for DNS. Encryption provided by TLS eliminatesopportunities for eavesdropping and on-path tampering with DNS queriesin the network, such as discussed in RFC 7626. In addition, thisdocument specifies two usage profiles for DNS over TLS and providesadvice on performance considerations to minimize overhead from usingTCP and TLS with DNS. This document focuses on securing stub-to-recursive traffic, as per the charter of the DPRIVE Working Group. Itdoes not prevent future applications of the protocol to recursive-to-authoritative traffic.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.
Having issues? You can contact us here
Accelerating Research

Address

John Eccles House
Robert Robinson Avenue,
Oxford Science Park, Oxford
OX4 4GP, United Kingdom