1
Marcel Waldvogel, Thomas Zink DNS Problems Our Goals Our Solution Boost DNS Privacy, Reliability, and Efficiency with opDNS Safe Query Elimination This leads to a number of privacy and reliability problems: [privacy] user fingerprinting [privacy] user tracking [reliability] outages and cencorship [reliability] DNS malfunctions Are you still who I think you are? Yes! I am! Here is the proof. unmodified application recursive DNS cache web server local opDNS cache client 1 2 0100101 1110010 1100110 1101101 1100001 3 0100101 1110010 1100110 1101101 1100001 4 5 6 Before contacting most services the clients send out cleartext DNS queries to DNS servers. The queries are not only revealed to DNS servers but can also easily be observed on the network. Increase privacy and reliability by eliminating unneccessary traffic reducing communication to trusted partners As a side effect, this also boosts efficiency due to reduced network traffic, latency, and computation. Opportunistic Persistent DNS (opDNS) keeps a local DNS cache integrates seamlessly with DANE and DNSSEC to safely retrieve initial records caches beyond TTLs for secure services and serves locally cached records uses TLS to authenticate services
