0
DNS over HTTPS was approved but not everyone is satisfied with it
2018-11-17T10:07:31.212Z17 November 2018

DNS over HTTPS was approved but not everyone is satisfied with it

The DNS protocol does not encrypt user requests to the server and the responses to them. Thus, queries contain the names of the hosts that the user is visiting. From here it is possible to “overhear” the communication channel and intercept unprotected personal data.

What is DNS over HTTPS?

To remedy the situation, the DNS over HTTPS standard was proposed. The IETF began working on it in May 2017. It was written by engineers from ICANN and from Mozilla. A feature of DoH is that requests to determine IP addresses are not sent to a DNS server, but are encapsulated into HTTPS traffic and transmitted to an HTTP server, on which a special resolver processes them using an API. DNS traffic is disguised as normal HTTPS traffic, while client-server communication occurs via the standard HTTPS port 443. The content of the requests and the fact that DoH is used remain hidden.

Critique of the DoH standard

Not all industry participants positively responded to this decision. Opponents of the standard believe that DoH is a step in the wrong direction and it will only reduce the level of security of the connection. The most dramatic about the new protocol is one of the developers of the DNS system. In his opinion, the new technology will not effectively control the operation of networks. For example, system administrators will not be able to block potentially malicious sites, and ordinary users will be deprived of the possibility of organizing parental control in browsers.

What is the future of the protocols

According to experts, it is not yet clear which way to protect DNS queries will become more common. Now both Cloudflare, and Quad9, and Alphabet support both standards. If DoH Alphabet is used in the Intra application, then the DoT protocol was used to protect the traffic in the Android Pie. Google also included DoH and DoT support in Google Public DNS (and the introduction of the second standard was not announced at all).

The final choice between DoT and DoH will depend on users and providers, and now none of the standards have a clear advantage. In particular, according to IT specialists, for the widespread adoption of the DoH protocol in practice, it will take a couple of decades.



Views
5
Shares
0
Comments
0

Comments

Latest news
How to become LIR in 7 days

There is an Internet infrastructure that includes switches, routers, which require a fairly large number of ..

30 August 2018
How to avoid mistakes when choosing a hosting

Everyone says that they learn from mistakes, but sometimes these mistakes can lead to very large losses. The..

17 September 2018
What is the reason for the global increase in the nu..

In April 2017, there were 320 hyper-scalable data centers in the world, and in December their number was 390..

15 November 2018
Samsung plans to become one of the telecommunication..

Samsung Electronics intends to take advantage of the opportunities that will open after the commercial intro..

27 September 2018

Do you like cookies? 🍪 We use cookies to ensure you get the best experience on our website. By using our website you agree with our policy!

I AGREE