@techreport{zuo-dprive-encryption-over-udp-00,
    number =    {draft-zuo-dprive-encryption-over-udp-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-zuo-dprive-encryption-over-udp/00/},
    author =    {Peng Zuo and Hongtao Li and Ning Kong and XiaoDong Lee and Guangqing Deng and Jiankang Yao and Nan Wang},
    title =     {{Approach on encrypting DNS message over UDP}},
    pagetotal = 10,
    year =      2015,
    month =     jul,
    day =       2,
    abstract =  {This document offers an approach to encrypt DNS queries and responses between the stub resolver and the recursive server over UDP to protect user privacy. The public key of the recursive server is distributed to the stub resolver through the Certificate Authority infrastructure, and the public key of the stub resolver is sent to the recursive server together with the DNS query where the public key is inserted to the additional section of the DNS query. Then the recursive server encrypts the DNS responses sent to the stub resolver with the public key of that stub resolver, and similarly the DNS query sent to the recursive server is encrypted by the stub resolver with the public key of that recursive server and thus the user privacy is protected.},
}