Reply to post: Re: I'm confused

IETF plants privacy test inside DNS

Anonymous Coward
Anonymous Coward

Re: I'm confused

> Admittedly, you reveal this initially only to your ISP, but your ISP is likely to be the principal culprit in pervasive monitoring.

True; but you don't *have* to use your ISP's DNS services.

Now whether you'd trust Google or OpenDNS with their handling of your query history is another thing again. So this requires some privacy-conscious DNS services to spring up - which you either pay to use, or somehow trust their public-spirited efforts.

If you're going to go that route, arguably you could just use something like IPSEC or (D)TLS to protect that traffic. But in the real world, people are behind NAT and on dynamic IP addresses, so maybe it makes sense to do this as a DNS extension.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022