Return to schedule

DNS-over-TLS (rfc7858) on UncensoredDNS / CensurFriDNS Feedback

DNS-over-TLS (rfc7858) is here, and is supported on UncensoredDNS/CensurFriDNS. Using it will vastly improve your privacy and security by encrypting and authenticating the vulnerable "last mile" between you and your DNS provider.

I will describe the technical details including the TLS privacy profiles defined in the RFC, server setup (Nginx), client setup (Stubby (getdns)), my considerations regarding anycast key management and distributing public key pinning information.

I will also briefly describe what it entails to run an anycast node for UncensoredDNS, in case someone in the audience feels like helping out. Finally I will discuss crowd funding possibilities for the project.


Speakers for DNS-over-TLS (rfc7858) on UncensoredDNS / CensurFriDNS:


Metadata for DNS-over-TLS (rfc7858) on UncensoredDNS / CensurFriDNS

To be recorded: Yes

URLs for DNS-over-TLS (rfc7858) on UncensoredDNS / CensurFriDNS

Recording: https://www.youtube.com/watch?v=AhXMhKLbw9o


Schedule for DNS-over-TLS (rfc7858) on UncensoredDNS / CensurFriDNS

  • Sunday, Aug 27th, 2017, 14:30 (CEST) - Sunday, Aug 27th, 2017, 15:30 (CEST) at Speakers Tent