Okay sorry perhaps I should put it differently... Don't overplay the privacy provided by DoH it has no effect on the DNS provider so any hint of 'privacy' should be caveated by stating its only as private as the company and country in which that company is founded, and where it operates servers. This is where the clients behaviour is of interest. If it chooses a company's service without giving the user an explicit choice its potentially setting it to be less 'private' than the local providers DNS. This is particularly true in the EU and countries that have strong data protection laws.
Note, I'm not actually anti-DoH. I, however, don't want it oversold, nor do I want the implementation to ignore real impacts and risks. I include here the risk of unintended consequences many of which will end up making the 'bad' you are trying to fix worse than it is now. Alister PS: I know that people use google et al already for DNS. This, however, is a protocol that places privacy front and centre, so it's much more important that clients are clear about what privacy its providing and what privacy it can't provide. Information in this email including any attachments may be privileged, confidential and is intended exclusively for the addressee. The views expressed may not be official policy, but the personal views of the originator. If you have received it in error, please notify the sender by return e-mail and delete it from your system. You should not reproduce, distribute, store, retransmit, use or disclose its contents to anyone. Please note we reserve the right to monitor all e-mail communication through our internal and external networks. SKY and the SKY marks are trademarks of Sky Limited and Sky International AG and are used under licence. Sky UK Limited (Registration No. 2906991), Sky-In-Home Service Limited (Registration No. 2067075), Sky Subscribers Services Limited (Registration No. 2340150) and Sky CP Limited (Registration No. 9513259) are direct or indirect subsidiaries of Sky Limited (Registration No. 2247735). All of the companies mentioned in this paragraph are incorporated in England and Wales and share the same registered office at Grant Way, Isleworth, Middlesex TW7 5QD _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
