Specification for DNS over Transport Layer Security (TLS) | Zendy

Zhichao Hu | Zendy; Li Zhu | Zendy; John Heidemann | Zendy; Allison Mankin | Zendy; Duane Wessels | Zendy; Paul Hoffman | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Specification for DNS over Transport Layer Security (TLS)

Author(s) -

Zhichao Hu,

Li Zhu,

John Heidemann,

Allison Mankin,

Duane Wessels,

Paul Hoffman

Publication year - 2016

Publication title -

rfc

Language(s) - English

Resource type - Reports

DOI - 10.17487/rfc7858

Subject(s) - transport layer security , computer science , computer security , computer network , encryption

This document describes the use of Transport Layer Security (TLS) toprovide privacy for DNS. Encryption provided by TLS eliminatesopportunities for eavesdropping and on-path tampering with DNS queriesin the network, such as discussed in RFC 7626. In addition, thisdocument specifies two usage profiles for DNS over TLS and providesadvice on performance considerations to minimize overhead from usingTCP and TLS with DNS. This document focuses on securing stub-to-recursive traffic, as per the charter of the DPRIVE Working Group. Itdoes not prevent future applications of the protocol to recursive-to-authoritative traffic.

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research