학술논문
A Public Key Based EDNS Privacy Tunnel for DNS
Document Type
Conference
Author
Source
2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE) TRUSTCOM-BIGDATASE Trust, Security And Privacy In Computing And Communications/ 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE), 2018 17th IEEE International Conference On. :1722-1724 Aug, 2018
Subject
Language
ISSN
2324-9013
Abstract
DNS privacy concerns are rising. DNS queries are sent in plain text by default, attackers can perform massive surveillance of unencrypted DNS traffic. Recursive resolvers know about the query domain name and the client IP address, which allows for fingerprinting of individual users. In order to mitigate privacy leaks in DNS, in this paper we propose a public key based EDNS Privacy Tunnel (EPT) padding option for DNS. EPT takes advantage of the public key encryption to hide the query domain name from recursive resolvers, reduce the client IP address leakage to authoritative servers, and defense against censorship and lying recursive resolvers.