On 2023-07-07, at 09:26, Esko Dijk <esko.d...@iotconsultancy.nl> wrote: > > In the last interim meeting presentation “security” was a key driver for this > draft. Which is a very good one; compared to non-secured DNS as the > alternative. > > Firmware size and code complexity/BOM are also relevant if this protocol can > avoid pulling in extra components (TLS/DTLS) that would otherwise not be > needed. > “More security by reducing complexity and reducing attack surface” also comes > to mind here as a secondary security benefit.
Note that “pulling in (D)TLS” may also mean pulling extra key material that needs to be managed separately from the keys relevant to the device’s applications. Grüße, Carsten _______________________________________________ dns-privacy mailing list dns-privacy@ietf.org https://www.ietf.org/mailman/listinfo/dns-privacy
