[dns-operations] ODNS: Oblivious DNS

James R Cutler james.cutler at consultant.com
Wed Apr 18 12:46:17 UTC 2018


> On Apr 18, 2018, at 8:38 AM, Yonghua Peng <ypeng at gmx.net> wrote:
> 
> https://odns.cs.princeton.edu/
> 
> ...
> To address this type of attacker, we present Oblivious DNS (ODNS), which is a new design of the DNS ecosystem that allows current DNS servers to remain unchanged and increases privacy for data in motion and at rest. ... While the name servers see incoming DNS requests, they do not know which clients they are coming from; additionally, an eavesdropper cannot connect a client with her corresponding DNS queries..

A weakness could be correlation of encrypted traffic times with in clear DNS query traffic from and to the proxy system.



More information about the dns-operations mailing list