Security News > 2022 > July > Google Adds Support for DNS-over-HTTP/3 in Android to Keep DNS Queries Private
Google on Tuesday officially announced support for DNS-over-HTTP/3 for Android devices as part of a Google Play system update designed to keep DNS queries private.
To that end, Android smartphones running Android 11 and higher are expected to use DoH3 instead of DNS-over-TLS, which was incorporated into the mobile operating system with Android 9.0.
HTTP/3, the first major upgrade to the hypertext transfer protocol since HTTP/2 was introduced in May 2015, is designed to use a new transport layer protocol called QUIC that's already supported by major browsers such as Google Chrome, Microsoft Edge, Mozilla Firefox, and Apple Safari.
The low-latency protocol, developed by Google in 2012, relies on the User Datagram Protocol rather than the Transmission Control Protocol to make HTTP traffic more secure and efficient, not to mention reduce the time it takes to establish connections between two endpoints.
"While using HTTPS alone will not reduce the overhead significantly, HTTP/3 uses QUIC, a transport that efficiently multiplexes multiple streams over UDP using a single TLS session with session resumption," Matthew Maurer and Mike Yu from the Android team said in a post.
It's worth pointing out that Google added Rust support to Android in April 2021.
News URL
https://thehackernews.com/2022/07/google-adds-support-for-dns-over-http3.html
Related news
- Free VPN apps on Google Play turned Android phones into proxies (source)
- Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies (source)
- Google rolls out new Find My Device network to Android devices (source)
- Google rejected 2.28 million risky Android apps from Play store in 2023 (source)
- Google now pays up to $450,000 for RCE bugs in some Android apps (source)
- Bug hunters can get up to $450,000 for an RCE in Google’s Android apps (source)
- Android bug can leak DNS traffic with VPN kill switch enabled (source)
- Android bug leaks DNS queries even when VPN kill switch is enabled (source)