Welcome to the DNS Privacy project home page 
This site is the home of a collaborative open project to promote, implement and deploy DNS Privacy. The goals of this project include:
- Raising awareness of the issue of DNS Privacy
- Empowering users to take advantage of DNS Privacy tools and resources (client applications, DNS Privacy resolvers)
- Evolving the DNS to support DNS Privacy in particular developing new DNS Protocol standards
- Working towards full support for DNS Privacy in a range of Open Source DNS implementations including: getdns, Unbound, NSD, BIND and Knot (Auth and Resolver)
- Co-ordinating deployment of DNS Privacy services and documenting operational practices
Among the many contributors to this project are Sinodun IT, NLnet Labs, SalesForce, Surftnet, NLnet Foundation, OTF, Stephane Borztmeyer and No Mountain Software.
QUICK START GUIDES
FOR END USERS
- What is the problem? Read up on why DNS Privacy is an issue.
- Clients: Meet 'Stubby' - a experimental DNS Privacy stub resolver for use on client machines.
- Test servers: See information on the current list of DNS Privacy test servers available
FOR OPERATORS
- Implementation status: See the current status of DNS Privacy (using DNS-over-TLS) implementations in various DNS software
- How to run a DNS-over-TLS server: Guides on TLS proxies and key management and tools
- COMING SOON: Guidance on data handling on DNS Privacy servers
Looking for DNSCrypt? See this DNSCrypt project update
See past DNS Privacy work
November 2020
- NDSS DNS Privacy Workshop Call for Papers
- Encrypted DNS configuration profiles for Apple devices.
- Mozilla start a Comment period on their use of DoH and TRRs
- Work on detecting encrypted DNS blocking by OONI and CIS India
- New version of draft on requirements for recursive to authoritative DNS encryption in IETF DPRIVE WG
October 2020
- BCP232 is published: RFC8932 Recommendations for DNS Privacy Service Operators
- Plans for Chrome to prototype ECK (Encrypted Client Hello)
- OARC33
September 2020
- Official Apple documentation for the encrypted DNS APIs: dnssettings, nsednssettingsmanager and privacycontexts
- Law proposed to block DoT, DoH, ECH and TLS 1.3 by Russia
- Review of NextDNS service
- Cloudflare launches beta Warp 1.1.1.1 clients for Windows and macOS desktop
- Android add DoH to Chrome
Overview of DNS Privacy Status
High level overview of ongoing work on DNS Privacy with monthly updates
DPRIVE Working Group
Catch up with the latest standards being developed to support DNS Privacy: DPRIVE Working group
Reference Material
For a list of useful RFCs, Internet Drafts and presentations see the Reference Material page.
Support
Thanks to NLnet Foundation and OTF for donations to support DNS Privacy work. Thanks for past support from Verisign Labs.
Running a DNS Privacy server
If you are interested in contributing by running a server see our how-to guide: Running a DNS Privacy server
Contact
If you are interested in contributing to the project please contact:
- Sara Dickinson (sara@sinodun.com)
- Allison Mankin (allison.mankin@gmail.com)
- Benno Overeinder (benno@NLnetLabs.nl)
We now have a twitter account:
Comments, JIRA and Bitbucket Access
After a spate of spam comments we have reluctantly change permissions so that commenting on pages requires a user account. An account also provides access to submit general privacy issues in the issue tracker and contribute to the code repositories create a user account (note that Stubby has it's own issue tracker in github):
