This document specifies the "SVCB" and "HTTPS" DNS resource record
(RR) types to facilitate the lookup of information needed to make
connections to network services, such as for HTTPS origins. SVCB
records allow a service to be provided from multiple alternative
endpoints, each with associated parameters (such as transport
protocol configuration and keys for encrypting the TLS ClientHello).
They also enable aliasing of apex domains, which is not possible with
CNAME. The HTTPS RR is a variation of SVCB for HTTPS and HTTP
origins. By providing more information to the client before it
attempts to establish a connection, these records offer potential
benefits to both performance and privacy.
Working Group Summary
Working group consensus was strong, though it was rough in spots.
During WGLC, discussions came up about the syntax of the records. The issues raised about the syntax was discussed in depth, and the issues raised were very much the rare exception rather than the rule.
Syntax Discussion: https://mailarchive.ietf.org/arch/msg/dnsop/fePoVb6vhryjzaMFSx_lzUcqLPk/
WGLC thread: https://mailarchive.ietf.org/arch/msg/dnsop/SXnlsE1B8gmlDjn4HtOo1lwtqAI/
While these are updates to existing standards, there is an implementation section where several versions of open source software has implemented this.
Document Shepherd (DS): Tim Wicinski
Responsible Area Director (RAD!): Warren Kumari