lswcap
Mozilla has been pushing ahead with a plan to implement DNS over HTTPS (DoH) that enhances privacy protection by encrypting DNS (Domain Name System) communication to browsers. On February 25 (local time), Mozilla announced that DoH will be enabled by default for Firefox users in the US in the coming weeks.
DNS is a database that calls an IP address that a computer like ‘192.0.1.1’ can recognize from a familiar parent name like’techrecipe.co.kr’. Since the DNS structure itself was developed decades ago, the domain name is called an IP address, and DNS queries and responses are usually made in clear, unencrypted text.
Therefore, not only information about which website the user will visit is leaked to the ISP of the Internet service provider, but also the risk of a third-party company looking into the contents or attacking a man-in-the-middle has been pointed out. As awareness of the protection of user privacy has increased, a move to encrypt communication with DNS has emerged.
As for the DNS encryption method, DoH and’DNS over TLS’ are two mainstream methods, but DoH uses HTTPS, which is widely popular, and is said to have an advantage over other methods in terms of privacy protection.
Mozilla said that these threats to privacy and security were known since the creation of the Internet for the move to encrypt communication with DNS. It is said that it will support safer alternatives as much as it knows. It is argued that DoH can hide browsing history from network attackers and prevent third-party companies from collecting data.
In addition, ISPs are concerned that Google is becoming a centralized DNS provider, saying that Internet filtering and parental control becomes difficult through DNS encryption for DoH, and there are reports that they are lobbying to block DNS communication encryption .
Unlike Google, which has been strongly backed by major ISPs, Mozilla is not a direct target for lobbying, so it has been working on DoH. In the coming weeks, according to Mozilla, Firefox users in the United States will have DoH enabled by default and will be monitored for problems. Non-US Firefox users can activate DoH by clicking the menu icon at the top right of the browser screen to enter options and clicking the Connection Settings at the bottom of the page in the general menu, and the DNS over HTTPS check box.
Users can also choose a DNS resolver that executes Firefox DNS queries from Cloudflare or NextDNS, a DNS service affiliated with Firefox. Firefox says it will continue to review the use of DoH in countries outside the United States and will continue to work to add reliable DNS resolvers. Related information can be found here .
Add comment