Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing

Abstract : The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security of a random set range query scheme in a real-world web surfing scenario. We demonstrate that the scheme does not sufficiently obfuscate characteristic query patterns, which can be used by an adversary to determine the visited websites. We also illustrate how to thwart the attack and discuss practical challenges. Our results suggest that previously published evaluations of range queries may give a false sense of the attainable security, because they do not account for any interdependencies between queries.
Type de document :
Communication dans un congrès
Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.205-219, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_17〉
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01370367
Contributeur : Hal Ifip <>
Soumis le : jeudi 22 septembre 2016 - 14:25:05
Dernière modification le : jeudi 22 septembre 2016 - 15:12:43

Fichier

978-3-642-55415-5_17_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Dominik Herrmann, Max Maaß, Hannes Federrath. Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing. Nora Cuppens-Boulahia; Frédéric Cuppens; Sushil Jajodia; Anas Abou El Kalam; Thierry Sans. 29th IFIP International Information Security Conference (SEC), Jun 2014, Marrakech, Morocco. Springer, IFIP Advances in Information and Communication Technology, AICT-428, pp.205-219, 2014, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-642-55415-5_17〉. 〈hal-01370367〉

Partager

Métriques

Consultations de la notice

49

Téléchargements de fichiers

40