With this blog post, B-Root commits to support DNS-over-TLS and Zone Transfers as part of our goal to improve DNS privacy.
B-Root has supported DNS-over-TLS (DoT) on port 853 since 2023, to protect queries from third-party observation. B-Root has always supported zone transfers (AXFR queries), allowing people to download a copy of the root zone, perhaps as part of services such as localroot.
We plan to continue offer these services long-term. Of course, we will temporarily suspend service if they are subject to attack or interfere with our primary responsibility of providing root DNS service over UDP and TCP.