Sökning: onr:"swepub:oai:DiVA.org:kau-94279" >
A Second Look at DN...
-
Magnusson, JonathanKarlstads universitet,Institutionen för matematik och datavetenskap (from 2013)
(författare)
A Second Look at DNS QNAME Minimization
- Artikel/kapitelEngelska2023
Förlag, utgivningsår, omfång ...
-
2023-03-10
-
Cham :Springer,2023
-
printrdacarrier
Nummerbeteckningar
-
LIBRIS-ID:oai:DiVA.org:kau-94279
-
https://urn.kb.se/resolve?urn=urn:nbn:se:kau:diva-94279URI
-
https://doi.org/10.1007/978-3-031-28486-1_21DOI
Kompletterande språkuppgifter
-
Språk:engelska
-
Sammanfattning på:engelska
Ingår i deldatabas
Klassifikation
-
Ämneskategori:ref swepub-contenttype
-
Ämneskategori:kon swepub-publicationtype
Anmärkningar
-
The Domain Name System (DNS) is a critical Internet infrastructure that translates human-readable domain names to IP addresses. It was originally designed over 35 years ago and multiple enhancements have since then been made, in particular to make DNS lookups more secure and privacy preserving. Query name minimization (qmin) was initially introduced in 2016 to limit the exposure of queries sent across DNS and thereby enhance privacy. In this paper, we take a look at the adoption of qmin, building upon and extending measurements made by De Vries et al. in 2018. We analyze qmin adoption on the Internet using active measurements both on resolvers used by RIPE Atlas probes and on open resolvers. Aside from adding more vantage points when measuring qmin adoption on open resolvers, we also increase the number of repetitions, which reveals conflicting resolvers – resolvers that support qmin for some queries but not for others. For the passive measurements at root and Top-Level Domain (TLD) name servers, we extend the analysis over a longer period of time, introduce additional sources, and filter out non-valid queries. Furthermore, our controlled experiments measure performance and result quality of newer versions of the qmin -enabled open source resolvers used in the previous study, with the addition of PowerDNS. Our results, using extended methods from previous work, show that the adoption of qmin has significantly increased since 2018. New controlled experiments also show a trend of higher number of packets used by resolvers and lower error rates in the DNS queries. Since qmin is a balance between performance and privacy, we further discuss the depth limit of minimizing labels and propose the use of a public suffix list for setting this limit.
Ämnesord och genrebeteckningar
Biuppslag (personer, institutioner, konferenser, titlar ...)
-
Müller, MoritzSIDN Labs, NLD
(författare)
-
Brunstrom, Anna,1967-Karlstads universitet,Institutionen för matematik och datavetenskap (from 2013)(Swepub:kau)annabrun
(författare)
-
Pulls, Tobias,1985-Karlstads universitet,Institutionen för matematik och datavetenskap (from 2013)(Swepub:kau)tobipull
(författare)
-
Karlstads universitetInstitutionen för matematik och datavetenskap (from 2013)
(creator_code:org_t)
Sammanhörande titlar
-
Ingår i:Passive and Active MeasurementCham : Springer, s. 496-521
Internetlänk