Recommendations for DNS Privacy Service Operators

Document Type Replaced Internet-Draft (dprive WG)
Authors Sara Dickinson  , Benno Overeinder  , Roland van Rijswijk-Deij  , Allison Mankin 
Last updated 2018-08-03 (latest revision 2018-07-16)
Replaced by RFC 8932
Stream Internet Engineering Task Force (IETF)
Intended RFC status Best Current Practice
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state Adopted by a WG
Document shepherd No shepherd assigned
IESG IESG state Replaced by draft-ietf-dprive-bcp-op
Consensus Boilerplate Yes
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document presents operational, policy and security considerations for DNS operators who choose to offer DNS Privacy services. With the recommendations, the operator can make deliberate decisions which services to provide, and how the decisions and alternatives impact the privacy of users. This document also presents a framework to assist writers of DNS Privacy Policy and Practices Statements (analogous to DNS Security Extensions (DNSSEC) Policies and DNSSEC Practice Statements described in [RFC6841]).


Sara Dickinson (
Benno Overeinder (
Roland van Rijswijk-Deij (
Allison Mankin (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)