Evaluation of Privacy for DNS Private Exchange

Document Type Replaced Internet-Draft (individual)
Last updated 2015-10-18
Replaced by draft-ietf-dprive-eval
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-dprive-eval
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


The set of DNS requests that an individual makes can provide a monitor with a large amount of information about that individual. DNS Private Exchange (DPRIVE) aims to deprive this actor of this information. This document describes methods for measuring the performance of DNS privacy mechanisms, particularly it provides methods for measuring effectiveness in the face of pervasive monitoring as defined in RFC7258. The document includes example evaluations for common use cases.


Aziz Mohaisen (mohaisen@buffalo.edu)
Allison Mankin (amankin@verisign.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)