Login to comment
Two years ago, @cloudflare launched trial support for ESNI, an extension to TLS that keeps hostnames private. Today, @cjpatton_ explains what we've learned and how the IETF specification has evolved to become ECH (Encrypted Client Hello).https://t.co/OwC7vQiHoq— Nick Sullivan (@grittygrease) December 8, 2020
And... "Improving DNS Privacy with Oblivious DoH in 188.8.131.52" https://t.co/3PORMaKZtj— John Graham-Cumming (@jgrahamc) December 8, 2020
Oblivious DoH is great because it answers, with a technical solution, the worries of people who want to use a very, very fast resolver like 184.108.40.206 but don't want to trust us with their IP.
Resolvers like 220.127.116.11 have privacy policies, but wouldn't it be cool if DNS resolvers never learned your IP address? Enter Oblivious DoH.— Nick Sullivan (@grittygrease) December 8, 2020
Cloudflare and partners (PCCW, SURF, and Equinix) now support this emerging standard to help make DoH private!
これ、信頼されて使われるのかな？— Korry Luke (@koluker) December 8, 2020
“each of these guarantees relies on one fundamental property — that the proxy and the target servers do not collude. So long as there is no collusion, an attacker succeeds only if both the proxy and target are compromised.”https://t.co/itFnuS08AH
“Engineers at Apple are working w/Cloudflare and Fastly to create Oblivious DNS, a new standard that can make it harder to track a user's online activities...By separating IP address from query, it offers chance for DNS queries to be made safer” $FSLY $NEThttps://t.co/aprjiVZEsG— TerraPharma (@TerraPharma1) December 8, 2020
"Now, #Cloudflare, #Apple, and content-delivery network #Fastly have introduced a novel way to fix that [...]. Engineers from all three companies have devised Oblivious #DNS, a major change to the current domain name system [...]." #ObliviousDNShttps://t.co/9Pomqo33Ai— Dennis C. Dietrich (@denniscdietrich) December 9, 2020
Login to comment