Recommendations for DNS Privacy Service Operators
RFC 8932, “Recommendations for DNS Privacy Service Operators”, is a Best Current Practice document published in October 2020 by S. Dickinson, B. Overeinder, R. van Rijswijk-Deij, A. Mankin. The canonical text is published by the RFC Editor.
Abstract
This document presents operational, policy, and security considerations for DNS recursive resolver operators who choose to offer DNS privacy services. With these recommendations, the operator can make deliberate decisions regarding which services to provide, as well as understanding how those decisions and the alternatives impact the privacy of users.
This document also presents a non-normative framework to assist writers of a Recursive operator Privacy Statement, analogous to DNS Security Extensions (DNSSEC) Policies and DNSSEC Practice Statements described in RFC 6841.
What “Best Current Practice” means
Documents the IETF community's recommended operational or procedural practice rather than a protocol specification.
The canonical text of RFC 8932 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 8931 IPv6 over Low-Power Wireless Personal Area Network Selective Fragment Recovery
- RFC 8933 Update to the Cryptographic Message Syntax for Algorithm Identifier Protection
- RFC 8930 On Forwarding 6LoWPAN Fragments over a Multi-Hop IPv6 Network
- RFC 8934 PCE Communication Protocol Extensions for Label Switched Path Scheduling with Stateful PCE
- RFC 8929 IPv6 Backbone Router
- RFC 8935 Push-Based Security Event Token Delivery Using HTTP
- RFC 8928 Address-Protected Neighbor Discovery for Low-Power and Lossy Networks
- RFC 8936 Poll-Based Security Event Token Delivery Using HTTP