Movatterモバイル変換

[0]ホーム
URL:

Search RFCs

Advanced Search

RFC Editor

RFC 8094

DNS over Datagram Transport Layer Security (DTLS),February 2017

File formats:
icon for text fileicon for PDFicon for HTML
Status:
EXPERIMENTAL
Authors:
T. Reddy
D. Wing
P. Patil
Stream:
IETF
Source:
dprive (int)

Cite this RFC:TXT  | XML  |  BibTeX

DOI:  https://doi.org/10.17487/RFC8094

Discuss this RFC: Send questions or comments to the mailing listdns-privacy@ietf.org

Other actions:Submit Errata  | Find IPR Disclosures from the IETF  | View History of RFC 8094

Abstract

DNS queries and responses are visible to network elements on the pathbetween the DNS client and its server. These queries and responsescan contain privacy-sensitive information, which is valuable toprotect.

This document proposes the use of Datagram Transport Layer Security(DTLS) for DNS, to protect against passive listeners and certainactive attacks. As latency is critical for DNS, this proposal alsodiscusses mechanisms to reduce DTLS round trips and reduce the DTLShandshake size. The proposed mechanism runs over port 853.

For the definition ofStatus,seeRFC 2026.

For the definition ofStream, seeRFC 8729.



IABIANAIETFIRTFISEISOCIETF Trust
ReportsPrivacy StatementSite MapContact Us

Advanced Search
[8]ページ先頭
©2009-2026 Movatter.jp