DNS Transport
Describes an experimental transport protocol for DNS. IP fragmentation is avoided, blind spoofing, amplification attacks and other denial of service attacks are prevented. Latency for a typical DNS query is a single round trip, after a setup exchange that establishes a long term shared secret. No per-client server state is required between transactions. The protocol may have other applications.