Security News > 2022 > July > Google boosts Android privacy with support for DNS-over-HTTP/3

Google has added support for the DNS-over-HTTP/3 protocol on Android 11 and later to increase the privacy of DNS queries while providing better performance.
Roid previously supported DNS-over-TLS for version 9 and later to bolster DNS query privacy, but this system inevitably slowed down DNS requests due to the encryption overhead. Moreover, DoT requires a complete renegotiation of the new connection when changing networks.
DNS-over-HTTPS is already widely supported by many DNS providers to provide increased privacy when performing DNS requests.
With Google supporting DNS-over-HTTP/3 Android and DNS-over-QUIC now a proposed standard, we will likely see increased adoption by DNS providers shortly.
As part of this feature's launch, Android devices will use Cloudflare DNS and Google Public DNS, which already support DNS-over-QUIC. In the future, Google plans on adding support for other DoH3 providers through the use of Discovery of Designated Resolvers, which automatically selects the best provider for your specific configuration.
At the time of reading this, all Android devices running Android 11 and later should use DoH3 for Google DNS and Cloudflare DNS. In addition, a subset of Android 10 devices whose vendors adopted Google Play system updates early will also receive this new feature.
News URL
Related news
- Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities (source)
- How Google tracks Android device users before they've even opened an app (source)
- Google fixes Android zero-day exploited by Serbian authorities (source)
- Google expands Android AI scam detection to more Pixel devices (source)
- Google Rolls Out AI Scam Detection for Android to Combat Conversational Fraud (source)
- New North Korean Android spyware slips onto Google Play (source)
- iPhone & Android Users: A Major Privacy Upgrade is Coming Soon (source)
- Malicious Android 'Vapor' apps on Google Play installed 60 million times (source)
- Google Gemini's Astra (screen sharing) rolls out on Android for some users (source)
- Phishing-as-a-service operation uses DNS-over-HTTPS for evasion (source)