Neither UDP or TCP by itself have transport layer security. Can you elaborate on this statement?
Course: Grokking Modern System Design Interview for Engineers & Managers - AI-Powered Learning for Developers
Lesson: How the Domain Name System Works - Grokking Modern System Design Interview for Engineers & Managers
Hi jyk,
When discussing DNS over UDP or TCP, it’s important to note that these are traditional DNS protocols that do not offer encryption or security features. However, DNS over TLS (DoT) and DNS over HTTPs (DoH) are newer protocols that layer encryption over TCP, to provide transport layer security for DNS queries.
For UDP-based DNS queries, the alternative protocol for transport layer security is DNS over Datagram Transport Layer Security (DTLS). DTLS is a protocol similar to TLS but designed to operate over datagram protocols like UDP.
We’ll update the quiz answer accordingly for clarification of the learners. Happy learning at Educative!
Regards,