* Phillip Hallam-Baker: > For a heavily trafficked resolver, the resolver-authoritative > interaction can be addressed with caching and by pre-fetching the > bulk of the requests. But this approach does not work so well for > the lightly trafficked resolver and especially not a local resolver > deployed in a home network.
Does encryption really make a difference there? In most jurisdictions, home networks use recursive resolvers whose operators are required by law to provide cleartext copies to local authorities. Encryption won't change that. If it is about securing broadcast media, just run IPsec between the CPE and the first ISP router with trusted ARP and routing tables. _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
