ODoQ: Oblivious DNS-over-QUIC
The Domain Name System (DNS), which converts domain names to their respective IP addresses, has advanced enhancements aimed at safeguarding DNS data and users’ identity from attackers. The recent privacy-focused advancements have enabled the IETF to standardize several protocols. Nevertheless, these protocols tend to focus on either strengthening user privacy (like Oblivious DNS and Oblivious DNS-over-HTTPS) or reducing resolution latency (as demonstrated by DNS-over- QUIC). Achieving both within a single protocol remains a key challenge, which we address in this paper. Our proposed protocol – ‘Oblivious DNS-over-QUIC’ (ODoQ) – leverages the benefits of the QUIC protocol and incorporates an intermediary proxy server to protect the client’s identity from exposure to the recursive resolver.
History
Journal/Conference/Book title
Internet Intelligence and Governance Workshop (IIGW) in 17th International Conference on COMmunication Systems & NETworkSPublication date
2025-01-06Version
- Pre-print