TU Darmstadt / ULB / TUprints

Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing

Herrmann, Dominik ; Maass, Max ; Federrath, Hannes (2022)
Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing.
29th IFIP TC 11 International Conference, SEC 2014. Marrakech, Morocco (02.-04.06.2014)
doi: 10.26083/tuprints-00021795
Conference or Workshop Item, Secondary publication, Postprint

[img] Text
1603.06597.pdf
Copyright Information: In Copyright.

Download (298kB)
Item Type: Conference or Workshop Item
Type of entry: Secondary publication
Title: Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing
Language: English
Date: 2022
Place of Publication: Darmstadt
Year of primary publication: 2014
Publisher: Springer Berlin Heidelberg
Book Title: ICT Systems Security and Privacy Protection
Collation: 16 Seiten
Event Title: 29th IFIP TC 11 International Conference, SEC 2014
Event Location: Marrakech, Morocco
Event Dates: 02.-04.06.2014
DOI: 10.26083/tuprints-00021795
Corresponding Links:
Origin: Secondary publication service
Abstract:

The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security of a random set range query scheme in a real-world web surfing scenario. We demonstrate that the scheme does not sufficiently obfuscate characteristic query patterns, which can be used by an adversary to determine the visited websites. We also illustrate how to thwart the attack and discuss practical challenges. Our results suggest that previously published evaluations of range queries may give a false sense of the attainable security, because they do not account for any interdependencies between queries.

Uncontrolled Keywords: Block Size, Range Query, Domain Name System, Query Pattern, Pattern Length
Status: Postprint
URN: urn:nbn:de:tuda-tuprints-217956
Classification DDC: 000 Generalities, computers, information > 004 Computer science
Divisions: 20 Department of Computer Science > Sichere Mobile Netze
Date Deposited: 29 Jul 2022 14:44
Last Modified: 25 Nov 2022 08:04
URI: https://tuprints.ulb.tu-darmstadt.de/id/eprint/21795
PPN: 499051467
Export:
Actions (login required)
View Item View Item