The Oblivious DNS is a new proposed DNS standard created by engineers at Apple, Fastly, and Cloudflare to improve privacy.
DNS is a fundamental cornerstone of the Internet as it translates domains, π.χ. iguru.gr σε διευθύνσεις IP. Κάθε φορά που συνδέεστε σε μια ιστοσελίδα στο Διαδίκτυο, απαιτείται DNS.
Using encrypted DNS, DNS over HTTPS and DNS over TLS standards protects DNS traffic from third parties trying to track you. Even traffic that can be recorded by DNS is valuable as it includes all the destinations that a user visits when using the Internet.
But even if the DNS traffic is encrypted with the above encryption standards, the DNS provider still has access to the IP address of the device that the user is using. The ODoH (Oblivious DNS over HTTPS) standard promises to change that.
Basically, what ODoH does is add a proxy to the requests between the user's device and the DNS provider.
So the traffic is routed through the proxy server and this of course leads to improved protection of the private life.
The DNS provider communicates only with the proxy server and not with the end user. In other words, the DNS provider sees the proxy IP but not the IP of the user's device.
ODoH also adds another layer of encryption to ensure that the proxy server cannot read the user's movements.
Cloudflare posted a detailed overview of the Oblivious DNS which provides additional technical details.
Also read the survey Oblivious DNS over HTTPS (ODoH): A Practical Privacy Enhancement to DNS
