Multi-Resolver-Based Privacy Protection Mechanism for Domain Names

doi:10.11871/jfdc.issn.2096-742X.2021.03.007

Abstract

Abstract:

[Objective] As an important infrastructure of the Internet, the DNS system was not initially designed with protocol security in mind, and DNS queries and responses are transmitted in plaintext, making it vulnerable to eavesdropping and traffic analysis. With evolution of the Internet, DNS security and privacy concerns have received increasing attention, variants of extended DNS encryption protocols have emerged to address the data protection issue during transmission. However, these DNS encryption transfer protocols fail to prevent the collection of user privacy by DNS recursive resolvers. Instead, the implementation and deployment of those protocols accelerate the centralization of the DNS resolution system, leading to increasingly serious privacy issues on the DNS server side. [Methods] The multi-resolver mechanism studied in this paper achieves centralization mitigation and DNS server-side user privacy protection by dispersing user query requests to multiple candidate DNS resolvers. By studying the selection strategy which is the core issue of the mechanism, this paper proposes an improved round robin selection method, which ensures a fixed relationship among domain-name resolvers by maintaining a query record table on the client side, reduces the amount of information about user browsing activities exposed to each individual resolver, and avoids a particular resolver from obtaining a user's entire web browsing history. In addition, a weighted round robin approach based on resolver ping latency is used as a further improved scheme to optimize the domain name resolution latency of the multi-resolver mechanism in order to strike a balance between privacy decentralization protection and performance.[Results] The experiments show that the improved round robin approach can effectively achieve the design goal of maximizing the dispersion of user's domain name resolution requests among the candidate resolvers, and the weighted round robin approach based on ping delay achieves significant performance improvement at the cost of a reduced dispersion effect. [Conclusions] Through the comparison of different selection strategies, the improved round robin method and the weighted round robin method proposed in this paper have shown advantages in the decentralization effect and resolution performance, respectively. The multi-resolver mechanism proposed in this paper provides a feasible solution to solve the privacy and centralization problems of the current DNS.

Key words: DNS, privacy protection, DNS over HTTPS

WU Yiming,WANG Wei,YAN Zhiwei,WANG Yang. Multi-Resolver-Based Privacy Protection Mechanism for Domain Names[J]. Frontiers of Data and Computing, 2021, 3(3): 75-85.

Figures/Tables 9

Fig.1

Fig.2

Fig.3

Table 1

Fig.4

Table 2

Table 3

Fig.5

Fig.6

References 24

[1]	Mockapetris P, Dunlap K J. Development of the domain name system[C]// Symposium proceedings on Communi-cations architectures and protocols. 1988: 123-133.
[2]	孔宁. 物联网资源寻址关键技术研究[D]. 中国科学院研究生院(计算机网络信息中心), 2008.
[3]	Mockapetris P V. Rfc1035: Domain names-implemen-tation and specification[S]. 1987.
[4]	Z Hu, L Zhu, J Heidemann, A Mankin, D Wessels, P Hoffman. Specification for DNS over transport layer security (TLS)[S]. Internet Requests for Comments, IETF, RFC 7858, May 2016.
[5]	P Hoffman and P McManus. DNS queries over HTTPS (DoH)[S]. Internet Requests for Comments, IETF, RFC 8484, October 2018.
[6]	Yan Z, Lee J H. The road to DNS privacy[J]. Future Gen-eration Computer Systems, 2020, 112(1):604-611.
[7]	胡宁, 邓文平, 姚苏. 互联网安全研究现状与挑战[J]. 网络与信息安全学报, 2017, 3(3):13-21
[8]	Selena Deckelmann. Firefox continues push to bring DNS over HTTPS by default for US users[EB/OL].https://blog.mozilla.org/blog/2020/02/25/firefox-continues-push-to-bring-dns-over-https-by-default-for-us-users/, 2020.
[9]	Lu C, Liu B, Li Z, et al. An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come?[C]// Proceedings of the Internet Measurement Conference, 2019: 22-35.
[10]	Atkins D, Austein R. Threat analysis of the domain name system (DNS)[R]. RFC 3833, August, 2004.
[11]	ROSSEBO J, CADZOW S, SIJBEN P, et al. A threat, vulnerability and risk assessment method and tool for europe[C]// The International Conference on Availability, Reliability and Security. 2007:925-933.
[12]	KONINGS B, BACHMAIER C, SCHAUB F, et al. Device names in the wild: Investigating privacy risks of zero configuration net- working[C]// The International Conference on Mobile Data Management, 2013:51-56.
[13]	BANSE C, Herrmann D, FEDERRATH H. Tracking users on the Internet wi th behavioral patterns: evaluation of its practical feasibility[M]// Information Security and Privacy Research. Berlin Heidelberg: Springer, 2012:235-248.
[14]	Deccio C, Davis J. DNS privacy in practice and prepara tion[C]// Proceedings of the 15th International Conference on Emerging Networking Experiments And Technologies, 2019: 138-143.
[15]	Böttger T, Cuadrado F, Antichi G, et al. An Empirical Study of the Cost of DNS-over-HTTPS[C]// Proceedings of the Internet Measurement Conference, 2019: 15-21.
[16]	Lu C, Liu B, Li Z, et al. An end-to-end, large-scale measurement of dns-over-encryption: How far have we come?[C]// Proceedings of the Internet Measurement Conference, 2019: 22-35.
[17]	SHULMAN H. Pretty bad privacy: pitfalls of DNS encryp- tion[C]// The Workshop on Privacy in the Elec-tronic Society, 2014:191-200.
[18]	Schmitt P, Edmundson A, Feamster N. Oblivious DNS: Practical privacy for DNS queries[J]. arXiv preprint arXiv:1806.00276, 2018.
[19]	Singanamalla S, Chunhapanya S, Vavruša M, et al. Oblivious DNS over HTTPS (ODoH): A Practical Privacy Enhancement to DNS[J]. arXiv preprint arXiv: 2011. 10121, 2020.
[20]	Zhao F, Hori Y, Sakurai K. Analysis of privacy disclosure in DNS query[C]// 2007 International Conference on Multi-media and Ubiquitous Engineering (MUE’07). IEEE, 2007: 952-957.
[21]	Hoang N P, Lin I, Ghavamnia S, et al. K-resolver: towards decentralizing encrypted DNS resolution[J]. arXiv preprint arXiv: 2001. 08901, 2020.
[22]	Hounsel A, Schmitt P, Borgolte K, et al. Designing for Tussle in (Encrypted) DNS[J]. arXiv preprint arXiv: 2002. 09055, 2020.
[23]	Pochat V L, Van Goethem T, Tajalizadehkhoob S, et al. Tranco: A research-oriented top sites ranking hardened against manipulation[J]. arXiv preprint arXiv: 1806. 01156, 2018.
[24]	Daniel Stenberg. Publicly available servers[EB/OL]. https://github.com/curl/curl/wiki/DNS-over-HTTPS, 2021.

编号	解析器地址	地区
0	dns.alidns.com	中国
1	resolver-eu.lelux.fi	英国
2	eu1.dns.lavate.ch	芬兰
3	jp.tiar.app	日本
4	doh.doh.my.id	新加坡
5	security.cloudflare-dns.com	Anycast

解析器编号	平均Ping延迟(ms)	Ping排序百分位Pk	权重Wk
0	6.15	33%	0.20
1	250.78	83%	0.08
2	308.13	100%	0.07
3	88.36	67%	0.10
4	71.94	50%	0.14
5	2.87	16%	0.41

解析器选择方法	选择分布标准差
哈希	7.42
轮询	0.01
加权轮询	12.45