DNS over HTTPS misuse or abuse: How to stay secure

2020-03-11 06:30

Compounding the issue is that certain operating systems and browsers use new encryption technologies - DNS over TLS and DNS over HTTPS - in the query response handshake with these unauthorized DNS services that make them harder to block.

Today I'm going to talk about DNS over HTTPS misuse or abuse.

You might've heard or it's been in the news recently about the use of DNS over HTTPS, or DNS over TLS to improve privacy of DNS communications.

To counter that, what's happened is there are two new developments in the market, DNS over HTTPS and DNS over TLS. These are meant to encrypt communication between the endpoint and your recursive DNS server.

When I say security, what I mean is, because in DNS over HTTPS or DoH, as it's called, the DNS queries are encrypted and sent over the HTTPS protocol, which means the enterprise DNS server does not see that request at all.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/UEIL_OXZRyQ/

#DNS #http #https