Notes from OARC 31
DNS transparency, DoH and DoT preferences, and Frag Flag Day – Geoff discusses highlights from DNS-OARC 31.
Tag: DNS
DNS Wars
The DNS has evolved from its initial design, but has it evolved for the better?
Eavesdroppers and censors can still monitor what you’re viewing even if you’re using encrypted DNS
Guest Post: Researchers have found it’s possible to identify web pages visited by a user by analysing DoH traffic.
Page load times not affected by DoH and DoT
Guest Post: TCP enables DoH and DoT to outperform Do53 in page load times, despite higher response times.
Opinion: Centralized DoH is bad for privacy, in 2019 and beyond
Guest Post: Centralized DoH ‘by default’ is a net-negative for everyone’s privacy and that even in later years it will not improve privacy outside of the most privacy hostile environments.
How to choose DNS TTL values
Guest Post: Study shows that even the use of anycast with a short TTL on the authoritative server-side cannot match the gains of longer TTLs.
DNS resolver centrality
Can we measure the level of DNS centrality in the Internet today?
Detecting IPv6 network scans
Guest Post: Researchers are using DNS backscatter to detect large-scale scans of IPv6 address space.
Measuring the impact of DNS Flag Day
Guest Post: A team of researchers measured the effects of DNS Flag Day from the perspective of end entities and authoritative servers.
Recursive resolver authoritative nameserver selection
Guest Post: Why do recursive resolvers select certain authoritative nameservers? Can it be improved?