Visible to the public T2DNS: A Third-Party DNS Service with Privacy Preservation and Trustworthiness

TitleT2DNS: A Third-Party DNS Service with Privacy Preservation and Trustworthiness
Publication TypeConference Paper
Year of Publication2020
AuthorsLiu, Q., Wu, W., Liu, Q., Huangy, Q.
Conference Name2020 29th International Conference on Computer Communications and Networks (ICCCN)
Date Publishedaug
Keywordsattestation, channel attackers, client DNS queries, composability, computer network security, cryptographic protocols, data privacy, Encryption, encryption protocol, hybrid protocol, initialization process, Intel SGX, Internet, Internet infrastructure, IP networks, obfuscation protocol, privacy, privacy preservation, Protocols, pubcrawl, server attackers, Servers, service proxy, T2DNS, Third-Party DNS, third-party DNS service, Trusted Computing, trustworthiness
AbstractWe design a third-party DNS service named T2DNS. T2DNS serves client DNS queries with the following features: protecting clients from channel and server attackers, providing trustworthiness proof to clients, being compatible with the existing Internet infrastructure, and introducing bounded overhead. T2DNS's privacy preservation is achieved by a hybrid protocol of encryption and obfuscation, and its service proxy is implemented on Intel SGX. We overcome the challenges of scaling the initialization process, bounding the obfuscation overhead, and tuning practical system parameters. We prototype T2DNS, and experiment results show that T2DNS is fully functional, has acceptable overhead in comparison with other solutions, and is scalable to the number of clients.
Citation Keyliu_t2dns_2020