Herrmann, Dominik ; Maass, Max ; Federrath, Hannes (2022)
Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing.
29th IFIP TC 11 International Conference, SEC 2014. Marrakech, Morocco (02.-04.06.2014)
doi: 10.26083/tuprints-00021795
Conference or Workshop Item, Secondary publication, Postprint
Text
1603.06597.pdf Copyright Information: In Copyright. Download (298kB) |
Item Type: | Conference or Workshop Item |
---|---|
Type of entry: | Secondary publication |
Title: | Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing |
Language: | English |
Date: | 2022 |
Place of Publication: | Darmstadt |
Year of primary publication: | 2014 |
Publisher: | Springer Berlin Heidelberg |
Book Title: | ICT Systems Security and Privacy Protection |
Collation: | 16 Seiten |
Event Title: | 29th IFIP TC 11 International Conference, SEC 2014 |
Event Location: | Marrakech, Morocco |
Event Dates: | 02.-04.06.2014 |
DOI: | 10.26083/tuprints-00021795 |
Corresponding Links: | |
Origin: | Secondary publication service |
Abstract: | The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security of a random set range query scheme in a real-world web surfing scenario. We demonstrate that the scheme does not sufficiently obfuscate characteristic query patterns, which can be used by an adversary to determine the visited websites. We also illustrate how to thwart the attack and discuss practical challenges. Our results suggest that previously published evaluations of range queries may give a false sense of the attainable security, because they do not account for any interdependencies between queries. |
Uncontrolled Keywords: | Block Size, Range Query, Domain Name System, Query Pattern, Pattern Length |
Status: | Postprint |
URN: | urn:nbn:de:tuda-tuprints-217956 |
Classification DDC: | 000 Generalities, computers, information > 004 Computer science |
Divisions: | 20 Department of Computer Science > Sichere Mobile Netze |
Date Deposited: | 29 Jul 2022 14:44 |
Last Modified: | 25 Nov 2022 08:04 |
URI: | https://tuprints.ulb.tu-darmstadt.de/id/eprint/21795 |
PPN: | 499051467 |
Export: |
View Item |