<div dir="ltr">How would you handle the case of DNS hajacking and poisoning? even worse if it happens at national level.</div><div class="gmail_extra"><br><div class="gmail_quote">2017-10-10 1:13 GMT+08:00 Sara Dickinson <span dir="ltr"><<a href="mailto:sara@sinodun.com" target="_blank">sara@sinodun.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word">Hi All, <div><br></div><div>Please consider submitting to the NDSS DNS Privacy Workshop 2018: Increasing Usability and Decreasing Traceability.</div><div><br></div><div>Call for papers: <a href="https://easychair.org/cfp/dprive2018" target="_blank">https://easychair.org/<wbr>cfp/dprive2018</a></div><div>Workshop Website: <a href="https://dnsprivacy.org/wiki/display/DNSPWS/DNS+Privacy+Workshop" target="_blank">https://dnsprivacy.<wbr>org/wiki/display/DNSPWS/DNS+<wbr>Privacy+Workshop</a></div><div><br></div><div><br></div><div>Location and Important Dates</div><div>------------------------------<wbr>-----------<br>Workshop Location: San Diego, CA, USA<br>Workshop date: 18th Feb 2018 (co-located with NDSS 2018)</div><div><br></div><div>Abstract submissions: 1st Dec 2017 anywhere-on-earth<br>Paper submission: 8th Dec 2017 anywhere-on-earth<br>Notifications and invitations to present at the workshop: 13th Jan 2018</div><div><br></div><div>Submissions may be new papers, papers already published, Short Papers, or<br>Position Papers. Also, please contact the TPC chairs if you want to<br>suggest a panel.</div><div><br></div><div>Allison, Sara and Melinda.</div><div><br></div><div><br></div><div><br></div><div>---</div><div><br></div><div>*Workshop on DNS Privacy 2018*</div><div><br></div><div>Background</div><div>-----------------<br>DNS Privacy has been a growing concern of the IETF and others in the Internet engineering community for the last few years. Almost every activity on the Internet starts with a DNS query (and often several).</div><div><br><div>* Those queries can reveal not only what websites an individual visits but also metadata about other services such as the domains of email contacts or chat services.
<br></div><div>* Whilst the data in the DNS is public, individual DNS transactions made by an end user should not be public.
<br></div><div>* Today, however DNS queries are sent in clear text (using UDP or TCP) which means passive eavesdroppers can observe all the DNS lookups performed.
<br></div><div>* The DNS is a globally distributed system that crosses international boundaries and often uses servers in many different countries in order to provide resilience.
<br></div><div>* It is well known that the NSA used the MORECOWBELL tool to perform mass surveillance of DNS traffic, and other surveillance techniques involving DNS almost certainly are in play today.
<br></div><div>* Some ISPs embed user information (e.g. a user ID or MAC address) within DNS queries that go to the ISP’s resolver in order to provide services such as Parental Filtering. This allows for fingerprinting of individual users.
<br></div><div>* Some CDNs embed user information (e.g. client subnets) in queries from resolvers to authoritative servers (to geo-locate end users). This allows for correlation of queries to particular subnets.
<br></div><div>* Some ISPs log DNS queries at the resolver and share this information with third-parties in ways not known or obvious to end users.<br></div><div><br></div>The IETF's DPRIVE Working Group has taken initial protocol steps to address these concerns (with much of the early work focussing on the stub to resolver problem), publishing DNS Privacy Considerations (RFC 7626), Specification for DNS over Transport Layer Security (RFC 7858), and The EDNS(0) Padding Option (RFC 7830), and DNS Query Name Minimisation to Improve Privacy (RFC 7816). However because of the great diversity of the DNS ecosystem, and the pervasive role of DNS and domain names in Internet applications and security, much is not fully understood or resolved. <br> <br>The goal of this workshop is to bring together privacy and Internet researchers with a diversity of backgrounds and views, to identify promising long-term mitigations of the broad space of DNS privacy risks.</div><div><br></div><div>Call for Submissions</div><div>-----------------------------<br>We welcome submissions in the form of research papers, short papers, or draft presentations, concerning all aspects of the threats, the protocols, and future design spaces, of DNS privacy or the privacy of adjacent protocols. Usability, traceability, measurement and analytical evaluations are particularly encouraged. </div></div><br>______________________________<wbr>_________________<br>
dns-operations mailing list<br>
<a href="mailto:dns-operations@lists.dns-oarc.net">dns-operations@lists.dns-oarc.<wbr>net</a><br>
<a href="https://lists.dns-oarc.net/mailman/listinfo/dns-operations
dns-operations" rel="noreferrer" target="_blank">https://lists.dns-oarc.net/<wbr>mailman/listinfo/dns-<wbr>operations<br>
dns-operations</a> mailing list<br>
<a href="https://lists.dns-oarc.net/mailman/listinfo/dns-operations" rel="noreferrer" target="_blank">https://lists.dns-oarc.net/<wbr>mailman/listinfo/dns-<wbr>operations</a><br></blockquote></div><br></div>