Towards Plugging Privacy Leaks in Domain Name System

نویسندگان

  • Yanbin Lu
  • Gene Tsudik
چکیده

Privacy leaks are an unfortunate and an integral part of the current Internet domain name resolution. Each DNS query generated by a user reveals – to one or more DNS servers – the origin and target of that query. Over time, a user’s browsing behavior might be exposed to entities with little or no trust. Current DNS privacy leaks stem from fundamental features of DNS and are not easily fixable by simple patches. Moreover, privacy issues have been overlooked by DNS security efforts (i.e. DNSSEC) and are thus likely to propagate into future versions of DNS. In order to mitigate privacy issues in current DNS, this paper proposes a Privacy-Preserving Domain Name System (PPDNS), which maintains privacy during domain name resolution. PPDNS is based on distributed hash tables (DHTs), an alternative naming infrastructure, and computational private information retrieval (cPIR) [14], an advanced cryptographic construct. PPDNS takes advantage of the DHT’s index structure to improve name resolution query privacy, while leveraging cPIR to reduce communication overhead for bandwidth-sensitive clients. Our analysis shows that PPDNS is a viable approach for obtaining a higher degree of privacy for name resolution queries. PPDNS also serves as a demonstration of blending advanced systems techniques with their cryptographic counterparts.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

PPDNS: Privacy-Preserving Domain Name System

In current DNS environment, each DNS query generated by a user reveals the origin and target of that query. Over time, a user’s browsing behavior and target domain name’s popularity might be exposed to entities with little or no trust. This paper presents the design and evaluation of a PrivacyPreserving Domain Name System (PPDNS), which prevents privacy leaks during domain name resolution with ...

متن کامل

Chattering Laptops

Mobile computer users often have a false sense of anonymity when they connect to the Internet at cafes, hotels, airports or other public places. In this paper, we analyze information leaked by mobile computers to the local access link when they are outside their home domain. While most application data can be encrypted, there is no similar protection for signaling messages in the lower layers o...

متن کامل

An Activity Theory Approach to Leak Detection and Mitigation in Personal Health Information (PHI)

The migration to Electronic Health Records (EHR) has raised issues with respect to security and privacy. One such issue that has become a concern for the healthcare providers, insurance companies and pharmacies is Patient Health Information (PHI) leak. Borrowing from Document Control Domain (DCD) literature, in this paper, we develop a methodology for detection and mitigation of PHI leaks by em...

متن کامل

Privacy Oracle

We describe the design and implementation of Privacy Oracle, a system that reports on application leaks of user information via the network traffic that they send. Privacy Oracle treats each application as a black box, without access to either its internal structure or communication protocols. This means that it can be used over a broad range of applications and information leaks (i.e., not onl...

متن کامل

Diffuse boundary extraction of breast masses on ultrasound by leak plugging.

We propose a semiautomated seeded boundary extraction algorithm that delineates diffuse region boundaries by finding and plugging their leaks. The algorithm not only extracts boundaries that are partially diffuse, but in the process finds and quantifies those parts of the boundary that are diffuse, computing local sharpness measurements for possible use in computer-aided diagnosis. The method t...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:
  • CoRR

دوره abs/0910.2472  شماره 

صفحات  -

تاریخ انتشار 2009