Yet another Quadruple DNS?
mysidia at gmail.com
Thu Mar 29 16:24:19 UTC 2018
On Thu, Mar 29, 2018 at 9:27 AM, Brian Kantor <Brian at ampr.org> wrote:
> Of course they could. But it's testable; experiments show that they
> aren't doing so currently.
Some of the recursive DNS providers support a protocol called DNSCrypt
for authenticating data between the client and the recursive nameserver,
to mutually authenticate client+server, and ensure data hasn't been modified
by a man-in-the-middle.
> - Brian
More information about the NANOG