Recent US Executive Order Calls for Encrypting DNS
isc.orgI was honestly hoping they were referring to the root DNS servers but the last leg on the client side I suppose is a start. Now we just need to get rid of all the big centralized DoH servers a.k.a. The Ultimate Data Collection and Future Censorship Platform and get all the home routers and corporate edge resolvers to do DoT to the root servers.
The middle ground of course is for all government agencies and companies to set up their own Anycast root DNS servers to participate in the global authoritative DNS clusters [1] and put their own caching DoT/DoH non-authoritative servers in front of them to keep their queries from traversing untrusted networks. i.e. all queries traverse government and corporate VPN's and the query terminates on the in-house DoT/DoH servers and finally terminates on the in-house root DNS Anycast replicas.
> ...published on January 17, 2025...
3 days before Trump replaced Biden. No offense, but I suspect that implementation won't be a priority for the new administration.