
Work Plan
Milestone 1
- Add support for fully recursive queries
- Add support for DNSSEC validation for recursive queries
- Add support for NSEC(3)
- Add support for IP allow lists for inbound connections
- Add support for a denylist for outbound ports
- Add support for a “do-not-query” list
- Add support for cache policies by record type
- Add support for NS round-robin to reduce triggering rate-limiting
Milestone 2
Work with the Let's Encrypt team to make sure deployment goes smoothly. Resolve any issues that come up.
Milestone 3
Work on adoption amongst other certificate authorities, operating systems, and major DNS providers.