How DNS Over HTTPS (DoH) will enhance your Internet privacy

Companies like Microsoft, Google and Mozilla promote DNS via HTTPS (DoH). This technology will encrypt DNS searches, improving internet privacy and security. But it is controversial: Comcast is pushing against it.

Here's what you need to know.

What is DNS Over HTTPS?

The web promotes encryption of all by default. At this point, most of the sites you access are likely to use HTTPS encryption. The modern programs Web sites such as Chrome now mark any Web site that uses standard HTTP as "unsafe." HTTP / 3, the new version of the HTTP protocol, has encryption.

This encryption ensures that no one can break into a website while viewing or monitoring what you do online. For example, if you log on to Wikipedia.org, your network administrator - whether it is a business Wi-Fi hotspot or your ISP - can only see that you are logged in to wikipedia.org. They can not see which article you are reading and can not edit a Wikipedia article during the transfer.

But in advancing encryption, DNS has lagged behind. The domain name system makes it possible to connect to websites through their domain names rather than using numerical IP addresses. You type one τομέα όπως το iguru.gr και το σύστημά σας θα επικοινωνήσει με τον διαμορφωμένο διακομιστή DNS για να αποκτήσει τη IP associated with iguru.gr. It will then connect to that IP address.

So far, these DNS searches have not been encrypted. When you link to a website, your system turns off a request saying that you are looking for the IP address associated with a domain. All intermediaries - possibly your internet service provider, but perhaps just a public Wi-Fi hotspot access point - could record which domains you are connecting to.

Today, most people use DNS servers provided by their ISP. However, there are many third-party DNS servers such as Cloudflare 1.1.1.1 , the Google Public DNS and OpenDNS . These third party providers are among the first to enable server support for DNS over HTTPS. To use DNS over HTTPS, you will need a DNS server and a client computer (such as a tissue or one system) that supports it.

Who will support it?

Google and Mozilla are already testing DNS over HTTPS in Google Chrome and Mozilla Firefox. On November 17, 2019, Microsoft announced that it would adopt DNS over HTTPS in Windows networking. This will ensure that every Windows application has the benefits of DNS over HTTPS.

You can also go to chrome: // flags / # dns-over-https to enable it.

In the current fixed version of Firefox today, you can go to Menu> Options> General, scroll down and click on "Settings" in the Network Settings area to find this option. Enable "Enable DNS via HTTPS."

Apple has not mentioned anything about DNS over HTTPS, but we expected it to follow the rest.

Why is Comcast Lobbying against it?

It sounds very controversial and it is. Comcast is obviously pushing to stop Google from deploying DNS over HTTPS because something will be lost.

In a Motherboard post, Comcast claims that Google is pursuing "unilateral plans" ("together with Mozilla") to enable DoH and "[collect] the majority of global DNS data in Google," which would mean "A fundamental change in the decentralized nature of Internet architecture. ”

Many of them are wrong. Mozilla's Marshell Erwin told Motherboard that "the allegations as a whole are extremely misleading and inaccurate." In a post on the company's blog, Chrome product manager Kenji Beaheux points out that Google Chrome will not force anyone to change their DNS provider. Chrome will work with your current system DNS provider, and if it does not support DNS over HTTPS, Chrome will not use DNS over HTTPS.

Since then, Microsoft has announced plans to support DoH at the Windows operating system level. So with Microsoft, Google and Mozilla embracing the new technology, it is not a "unilateral" plan by Google.

Some people think that Comcast does not like DoH because it can no longer collect DNS search data. However, Comcast said it was not spying on DNS searches. The company insists it supports encrypted DNS but wants a "collaborative solution across the technology community" rather than "unilateral action".

How will DNS Over HTTPS work?

With Comcast's strange objections, let's take a look at how of DNS over HTTPS. When DoH support is enabled in Chrome, Chrome will only use DNS over HTTPS if the system's current DNS server supports it.

In other words, if you have a provider like Comcast and they refuse to support DoH, Chrome will work as it does today without encrypting DNS lookups. If you have selected another DNS server (Cloudflare DNS, Google Public DNS or ), Chrome will use encryption to “talk” to your current DNS server automatically on its connection.

 

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).