/plushcap/analysis/cloudflare/dns-encryption-explained

DNS Encryption Explained

What's this blog post about?

The Domain Name System (DNS) is the address book of the internet, translating domain names into IP addresses. However, DNS queries and responses are typically unprotected, posing privacy and security risks. Encrypting DNS can improve user privacy and security. Two mechanisms for encrypting DNS exist: DNS over TLS (DoT) and DNS over HTTPS (DoH). Both are based on Transport Layer Security (TLS), which is also used to secure communication between a web server and client using HTTPS. Encrypting the web has made it possible for private and secure communications and commerce to flourish, and encrypting DNS will further enhance user privacy. Major public resolvers support DoT and DoH, but many ISP resolvers still lack support for them.

Company
Cloudflare

Date published
Oct. 29, 2019

Author(s)
Peter Wu

Word count
3263

Language
English

Hacker News points
17


By Matt Makai. 2021-2024.