Oblivious DNS over HTTPS
RFC 9230, “Oblivious DNS over HTTPS”, is an Experimental document published in June 2022 by E. Kinnear, P. McManus, T. Pauly, T. Verma, C.A. Wood. The canonical text is published by the RFC Editor.
Abstract
This document describes a protocol that allows clients to hide their IP addresses from DNS resolvers via proxying encrypted DNS over HTTPS (DoH) messages. This improves privacy of DNS operations by not allowing any one server entity to be aware of both the client IP address and the content of DNS queries and answers.
This experimental protocol has been developed outside the IETF and is published here to guide implementation, ensure interoperability among implementations, and enable wide-scale experimentation.
What “Experimental” means
Describes a specification that is part of a research or development effort, published so the community can gain experience with it.
The canonical text of RFC 9230 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9229 IPv4 Routes with an IPv6 Next Hop in the Babel Routing Protocol
- RFC 9231 Additional XML Security Uniform Resource Identifiers
- RFC 9228 Delivered-To Email Header Field
- RFC 9232 Network Telemetry Framework
- RFC 9227 Using GOST Ciphers in the Encapsulating Security Payload and Internet Key Exchange Version 2 Protocols
- RFC 9233 Internationalized Domain Names for Applications 2008 and Unicode 12.0.0
- RFC 9226 Bioctal: Hexadecimal 2.0
- RFC 9234 Route Leak Prevention and Detection Using Roles in UPDATE and OPEN Messages