Reference : Leveraging eBPF to preserve user privacy for DNS, DoT, and DoH queries
Scientific congresses, symposiums and conference proceedings : Paper published in a journal
Engineering, computing & technology : Computer science
Security, Reliability and Trust
http://hdl.handle.net/10993/44402
Leveraging eBPF to preserve user privacy for DNS, DoT, and DoH queries
English
Rivera, Sean mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Gurbani, Vijay mailto [Illinois Institute of Technology > Computer Science]
Lagraa, Sofiane mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Iannillo, Antonio Ken mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
State, Radu mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Aug-2020
Proceedings of the 15th International Conference on Availability, Reliability and Security
Yes
No
ARES '20
from 25-8-2020 to 28-8-2020
ACM
Virtual Event
Ireland
[en] DNS ; Privacy ; eBPF
[en] The Domain Name System (DNS), a fundamental protocol that controls how users interact with the Internet, inadequately provides protection for user privacy. Recently, there have been advancements in the field of DNS privacy and security in the form of the DNS over TLS (DoT) and DNS over HTTPS (DoH) protocols. The advent of these protocols and recent advancements in large-scale data processing have drastically altered the threat model for DNS privacy. Users can no longer rely on traditional methods, and must instead take active steps to ensure their privacy. In this paper, we demonstrate how the extended Berkeley Packet Filter (eBPF) can assist users in maintaining their privacy by leveraging eBPF to provide privacy across standard DNS, DoH, and DoT communications. Further, we develop a method that allows users to enforce application-specific DNS servers. Our method provides users with control over their DNS network traffic and privacy without requiring changes to their applications while adding low overhead.
Researchers
http://hdl.handle.net/10993/44402
10.1145/3407023.3407041
https://dl.acm.org/doi/10.1145/3407023.3407041
H2020 ; 830927 CONCORDIA

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Limited access
Privacy_and_DNS.pdfPublisher postprint949.09 kBRequest a copy

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.