[talk] Vixie meeting

George Rosamond george at ceetonetechnology.com
Tue Feb 25 11:19:44 EST 2020

As some of you may know, the Vixie meeting next week should raise some
interesting issues with DoH and DoT... basically DNS lookups encrypted
over https or tls instead of clear text over UDP.

The issue is a bit more complex than it seems on the surface.

Most broadly, of course DNS lookups should be encrypted, but what's
disturbing is that US FF will be set to go to Cloudflare, who obviously
know this is a wonderful data-mining opportunity.

The whole issue of "privacy" gets distorted too easily.  Yes, you should
have privacy in DNS lookups, but sending encrypted lookups to one
provider is a recipe for privacy from "the other" while centralizing a
few huge collectors of that data.

Yes, more providers should be running DOT servers, but that in itself
isn't the answer.

This link raises the issue, but misses the dangerous implications of DOH:



More information about the talk mailing list