All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

Privacy Illusion: Beware of Unpadded DoH

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F63839172%3A_____%2F20%3A10133321" target="_blank" >RIV/63839172:_____/20:10133321 - isvavai.cz</a>

  • Alternative codes found

    RIV/68407700:21240/20:00344971

  • Result on the web

    <a href="https://ieeexplore.ieee.org/document/9284864" target="_blank" >https://ieeexplore.ieee.org/document/9284864</a>

  • DOI - Digital Object Identifier

    <a href="http://dx.doi.org/10.1109/IEMCON51383.2020.9284864" target="_blank" >10.1109/IEMCON51383.2020.9284864</a>

Alternative languages

  • Result language

    angličtina

  • Original language name

    Privacy Illusion: Beware of Unpadded DoH

  • Original language description

    DNS over HTTPS (DoH) has been created with ambitions to improve the privacy of users on the internet. Domain names that are being resolved by DoH are transferred via an encrypted channel, ensures nobody should be able to read the content. However, even though the communication is encrypted, we show that it still leaks some private information, which can be misused. Therefore, this paper studies the behavior of the DoH protocol implementation in Firefox and Chrome web-browsers, and the level of detail that can be revealed by observing and analyzing packet-level information. The aim of this paper is to evaluate and highlight discovered privacy weaknesses hidden in DoH. By the trained machine learning classifier, it is possible to infer individual domain names only from the captured encrypted DoH connection. The resulting trained classifier can infer domain name from encrypted DNS traffic with surprisingly high accuracy up to 90% on HTTP 1.1, and up to 70% on HTTP 2 protocol.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

  • OECD FORD branch

    20202 - Communication engineering and systems

Result continuities

  • Project

    <a href="/en/project/EF16_013%2F0001797" target="_blank" >EF16_013/0001797: CESNET E-Infrastructure - Modernisation</a><br>

  • Continuities

    P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Others

  • Publication year

    2020

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    2020 11th IEEE Annual Information Technology, Electronics and Mobile Communication Conference (IEMCON)

  • ISBN

    978-1-72818-416-6

  • ISSN

    2644-3163

  • e-ISSN

  • Number of pages

    8

  • Pages from-to

    621-628

  • Publisher name

    IEEE

  • Place of publication

    Chicago,USA

  • Event location

    Vancouver, Canada

  • Event date

    Nov 4, 2020

  • Type of event by nationality

    WRD - Celosvětová akce

  • UT code for WoS article

Similar results(10)

DoH Insight: Detecting DNS over HTTPS by Machine LearningDoH detection: Discovering hidden DNSAnalysis of Well-Known DNS over HTTPS Resolvers