DNS over Dedicated QUIC Connections (DoQ)
Embed This Widget
Add the script tag and a data attribute to embed this widget.
Embed via iframe for maximum compatibility.
<iframe src="https://ipfyi.com/iframe/entity//" width="420" height="400" frameborder="0" style="border:0;border-radius:10px;max-width:100%" loading="lazy"></iframe>Paste this URL in WordPress, Medium, or any oEmbed-compatible platform.
https://ipfyi.com/entity//Add a dynamic SVG badge to your README or docs.
[](https://ipfyi.com/entity//)Use the native HTML custom element.
P. Huitema, S. Dickinson, A. Mankin · 2022-05
Abstract
RFC 9250 specifies DNS over QUIC (DoQ), a protocol for encrypting DNS queries and responses using QUIC transport on UDP port 853. DoQ provides confidentiality, integrity, and reduced latency compared to DoT by leveraging QUIC's 0-RTT connection establishment and stream multiplexing.
Why This RFC Matters
DoQ represents the next evolution of encrypted DNS transport, applying QUIC's performance innovations to DNS privacy. While DoT encrypts DNS but inherits TCP's handshake overhead, and DoH provides privacy with HTTP overhead, DoQ offers the best of both: strong encryption with QUIC's 0-RTT resumption and no head-of-line blocking between independent DNS queries. Operating on port 853 like DoT, DoQ is explicitly designed for dedicated DNS connections rather than blending with web traffic. As QUIC adoption grows and resolvers update their stacks, DoQ is positioned to become the preferred encrypted DNS transport for latency-sensitive applications.