DNS FUNCTIONS EVOLUTION Pavel Khramtsov MSKIX DNS projects

One World. One Internet. One Namespace. One Resolving? Is it still right? Does new

The classic recursion scheme TLD zone servers s. TLD zone servers ROOT zone servers

The classic recursion scheme with DNSSEC TLD zone servers s. TLD zone servers ROOT

The classic recursion scheme with local root & prefetching s. TLD zone servers Root

The classic recursion scheme with Google public resolver s. TLD zone servers Root zone

The classic recursion scheme with Google public resolver & Do. T/Do. H Does Google

The trust to Google is boundless What Google Ecosystem Includes? ● Search Engine ●

Resume One World. One Internet. One Namespace. One Resolving? Is it still right? Does

Thank you! Your questions? Pavel Khramtsov MSK-IX DNS projects manager +7 (495) 737 -92

Slides: 10

Download presentation

DNS: FUNCTIONS EVOLUTION Pavel Khramtsov MSK-IX DNS projects manager Moscow, 2018

One World. One Internet. One Namespace. One Resolving? Is it still right? Does new DNS-trends keep the Resolving in the correct way? That is the question! DNS

The classic recursion scheme TLD zone servers s. TLD zone servers ROOT zone servers Recursion Public DNS Resolver dns. ix. ru 62. 76. 62 End users queries It may be any ISP’s resolver DNS answers End users Stub resolver

The classic recursion scheme with DNSSEC TLD zone servers s. TLD zone servers ROOT zone servers Recursion and DNSSEC validation ISP’s resolver RFC 5011 End users queries DNS answers End users KSK 11. 10. 2018 Stub resolver

The classic recursion scheme with local root & prefetching s. TLD zone servers Root zone Recursion and DNSSEC validation ISP’s resolver RFC 7706 ROOT zone local server RFC 5011 End users queries DNS answers “Prefetching” End users KSK 11. 10. 2018 Stub resolver

The classic recursion scheme with Google public resolver s. TLD zone servers Root zone Recursion and DNSSEC validation ISP Google Resolver 8. 8 From Google Cache RFC 5011 End users queries RFC 7706 ? ROOT zone local server DNS answers “Prefetching - ? ” End users KSK 11. 10. 2018 Stub resolver

The classic recursion scheme with Google public resolver & Do. T/Do. H Does Google need DNS? Actually Yes! For prefetching. s. TLD zone servers Root zone Recursion and DNSSEC validation RFC 5011 ISP Google Resolver 8. 8 From Google Cache RFC 7706 ? ROOT zone local server DNS over TLS / DNS over HTTPS “Prefetching - ? ” End users KSK 11. 10. 2018 Browser with Do. T/Do. H Does end-user need DNS? No!

The trust to Google is boundless What Google Ecosystem Includes? ● Search Engine ● Browser ● Public Resolver ● Information resources cache ● Center of Authority ● …

Resume One World. One Internet. One Namespace. One Resolving? Is it still right? Does new DNS-trends keep the Resolving in the correct way? That is the question!

Thank you! Your questions? Pavel Khramtsov MSK-IX DNS projects manager +7 (495) 737 -92 -95 8 Marta Street 1, bld. 12, office XXXV, room 19 Moscow 127083, Russian Federation Website msk-ix. ru Facebook facebook. com/msk. ix