Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Starting TLS over DNS
draft-hzhwm-start-tls-for-dns-01

Versions:

This document is an Internet-Draft (I-D). Anyone may submit an I-D to the IETF. This I-D is not endorsed by the IETF and has no formal standing in the IETF standards process.

Document	Type	Expired Internet-Draft (individual) Expired & archived
	Authors	Zi Hu , Liang Zhu , John Heidemann , Allison Mankin , Duane Wessels
	Last updated	2015-01-05 (Latest revision 2014-07-04)
	Replaces	draft-start-tls-over-dns
	RFC stream	(None)
	Intended RFC status	(None)
	Formats	txt xml htmlized bibtex bibxml
Stream	Stream state	(No stream defined)
	Consensus boilerplate	Unknown
	RFC Editor Note	(None)
IESG	IESG state	Expired
	Telechat date	(None)
	Responsible AD	(None)
	Send notices to	(None)

Email authors IPR References Referenced by Nits Search email archive

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

txt xml htmlized bibtex bibxml

Abstract

This document describes a technique for upgrading a DNS TCP connection to use Transport Layer Security (TLS) over standard ports. Encryption provided by DNS-over-TLS eliminates opportunities for eavesdropping of DNS queries in the network. The proposed mechanism is backwards compatible with clients and servers that are not aware of DNS-over-TLS.

Authors

Zi Hu
Liang Zhu
John Heidemann
Allison Mankin
Duane Wessels

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)

Starting TLS over DNS draft-hzhwm-start-tls-for-dns-01

Starting TLS over DNS
draft-hzhwm-start-tls-for-dns-01