Oblivious DNS to improve privacy

Oblivious DNS is a new proposed DNS standard created by engineers at Apple, Fastly and to improve privacy.

DNS is a fundamental cornerstone of the Internet as it translates domains, e.g.   σε διευθύνσεις IP. Κάθε φορά που συνδέεστε σε μια ιστο on the Internet, DNS is required.

Using encrypted DNS standards, DNS over HTTPS and DNS over TLS, protects your DNS traffic from third parties trying to track you. Even the traffic that can be recorded by DNS is valuable as it includes all the destinations one visits when using the Internet.

But even if the DNS traffic is encrypted with the above encryption standards, the DNS provider still has access to the IP address of the device that the user is using. The ODoH (Oblivious DNS over HTTPS) standard promises to change that.

Basically, what ODoH does is add a proxy to the requests between the user's device and the DNS provider.

This way traffic is routed through the proxy server and this of course leads to improved privacy.

The DNS provider communicates only with the proxy server and not with the end user. In other words, the DNS provider sees the proxy IP but not the IP of the user's device.

ODoH also adds another layer of encryption to ensure that the proxy server cannot read the user's movements. 

Cloudflare posted a detailed overview of the Oblivious DNS which provides additional technical details.

Also read the survey Oblivious DNS over HTTPS (ODoH): A Practical Privacy Enhancement to DNS

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).