Recently published RFC calls for DNS encryption
A Request for Comments (RFC) recently published by the Internet Engineering Task Force (IETF) calls for the use of Transport Layer Security to encrypt Domain Name System (DNS) requests and responses. As mentioned in the RFC, nearly all DNS queries (in very simple terms, looking for a domain name in the DNS) are currently sent unencrypted, ‘which makes them vulnerable to eavesdropping by an attacker that has access to the network channel, reducing the privacy of the end-user’. The RFC describes the use of a protocol that would provide privacy for DNS queries and responses, and ‘eliminate the opportunities for eavesdropping and on-path tampering with DNS queries in the network’.
About author
DW Team
The GIP Digital Watch Observatory team, consisting of over 30 digital policy experts from around the world, excels in the fields of research and analysis on digital policy issues. The team is backed by the creative prowess of Creative Lab Diplo and the technical expertise of the Diplo tech team.