Specification of DNS over Dedicated QUIC Connections
While a lot of people debate DNS-over-https (and it’s dependencies), IETF has a specification for DNS-over-QUIC on it’s standards track.
This document describes the use of QUIC to provide transport privacy for DNS. The encryption provided by QUIC has similar properties to that provided by TLS, while QUIC transport eliminates the head-of-line blocking issues inherent with TCP and provides more efficient error corrections than UDP. DNS over QUIC (DNS/QUIC) has privacy properties similar to DNS over TLS specified in RFC7858, and performance similar to classic DNS over UDP.
The Internet was built with de-centralized infrastructures in mind. To scale globally, network providers like CloudFlare have emerged, to run decentralized infrastructures and offer them as a service. In general, keeping service independent of each others and maintaining heterogeneous networks have a proven track record of resilience, that is not necessarily inherent to the architecture of these providers. Just like Akamai had a bad day in 2004, CloudFlare today suffered from a global outage, that left many obvious collateral problems visible all over the Internet. Bloomberg, among others, reports:
CloudFlare Inc., an internet service meant to protect websites from going down, faced its own network issues on Tuesday, leading to several prominent sites — like blogging platform Medium and video game chat provider Discord — being unavailable for some time.Source: Net Defender CloudFlare Goes Down, Taking Many Websites With It – Bloomberg