Recently published RFC calls for DNS encryption
A Request for Comments (RFC) recently published by the Internet Engineering Task Force (IETF) calls for the use of Transport Layer Security to encrypt Domain Name System (DNS) requests and responses. As mentioned in the RFC, nearly all DNS queries (in very simple terms, looking for a domain name in the DNS) are currently sent unencrypted, ‘which makes them vulnerable to eavesdropping by an attacker that has access to the network channel, reducing the privacy of the end-user’. The RFC describes the use of a protocol that would provide privacy for DNS queries and responses, and ‘eliminate the opportunities for eavesdropping and on-path tampering with DNS queries in the network’.