John R Levine wrote: > ... > > Tor is one approach to query security that seems to work pretty well > give or take side channel leakage. Dunno if there are any others, but > it is clearly a very hard problem, and not one we're going to solve > any time soon.
i think we have to be realistic. the national security apparatus of the largest dozen economies have effectively unlimited resources. they will spend as many of our tax dollars as it takes to buy as much equipment and talent and methodology and electric power as it takes to watch what they decide is important to watch. i'm all for PFS on the cache miss path, but trying to hide who the query came from so that an authority server has less insight, is nutball stuff. remember that the NSA (et al) is a form of "us" and that we will not stop "us" with math. real change there will come in the voting booth. -- Paul Vixie _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
