Privacy Extensions for DNS-SD
draft-ietf-dnssd-privacy-05

Document Type Expired Internet-Draft (dnssd WG)
Last updated 2019-04-18 (latest revision 2018-10-15)
Replaces draft-huitema-dnssd-privacy
Stream IETF
Intended RFC status Proposed Standard
Formats
Expired & archived
pdf htmlized bibtex
Stream WG state Held by WG
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Yes
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-ietf-dnssd-privacy-05.txt

Abstract

DNS-SD (DNS Service Discovery) normally discloses information about both the devices offering services and the devices requesting services. This information includes host names, network parameters, and possibly a further description of the corresponding service instance. Especially when mobile devices engage in DNS Service Discovery over Multicast DNS at a public hotspot, a serious privacy problem arises. We propose to solve this problem by a two-stage approach. In the first stage, hosts discover Private Discovery Service Instances via DNS-SD using special formats to protect their privacy. These service instances correspond to Private Discovery Servers running on peers. In the second stage, hosts directly query these Private Discovery Servers via DNS-SD over TLS. A pairwise shared secret necessary to establish these connections is only known to hosts authorized by a pairing system. Revisions of this draft are currently considered in the DNSSD working group.

Authors

Christian Huitema (huitema@huitema.net)
Daniel Kaiser (daniel.kaiser@uni-konstanz.de)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)