Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing - ICT Systems Security and Privacy Protection (SEC 2014)
Conference Papers Year : 2014

Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing

Abstract

The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security of a random set range query scheme in a real-world web surfing scenario. We demonstrate that the scheme does not sufficiently obfuscate characteristic query patterns, which can be used by an adversary to determine the visited websites. We also illustrate how to thwart the attack and discuss practical challenges. Our results suggest that previously published evaluations of range queries may give a false sense of the attainable security, because they do not account for any interdependencies between queries.
Fichier principal
Vignette du fichier
978-3-642-55415-5_17_Chapter.pdf (351.3 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01370367 , version 1 (22-09-2016)

Licence

Identifiers

Cite

Dominik Herrmann, Max Maass, Hannes Federrath. Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. pp.205-219, ⟨10.1007/978-3-642-55415-5_17⟩. ⟨hal-01370367⟩
113 View
105 Download

Altmetric

Share

More