Service Binding and Parameter Specification via the DNS
RFC 9460, “Service Binding and Parameter Specification via the DNS”, is a Proposed Standard document published in November 2023 by B. Schwartz, M. Bishop, E. Nygren. The canonical text is published by the RFC Editor.
Abstract
This document specifies the "SVCB" ("Service Binding") and "HTTPS" DNS resource record (RR) types to facilitate the lookup of information needed to make connections to network services, such as for HTTP origins. SVCB records allow a service to be provided from multiple alternative endpoints, each with associated parameters (such as transport protocol configuration), and are extensible to support future uses (such as keys for encrypting the TLS ClientHello). They also enable aliasing of apex domains, which is not possible with CNAME. The HTTPS RR is a variation of SVCB for use with HTTP (see RFC 9110, "HTTP Semantics"). By providing more information to the client before it attempts to establish a connection, these records offer potential benefits to both performance and privacy.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9460 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9459 CBOR Object Signing and Encryption : AES-CTR and AES-CBC
- RFC 9461 Service Binding Mapping for DNS Servers
- RFC 9462 Discovery of Designated Resolvers
- RFC 9457 Problem Details for HTTP APIs
- RFC 9463 DHCP and Router Advertisement Options for the Discovery of Network- designated Resolvers
- RFC 9456 Updates to the TLS Transport Model for SNMP
- RFC 9464 Internet Key Exchange Protocol Version 2 Configuration for Encrypted DNS
- RFC 9455 Avoiding Route Origin Authorizations Containing Multiple IP Prefixes