Explore the evolution and implications of DNS encryption in this 40-minute Black Hat conference talk. Delve into the transition from unencrypted DNS requests to encrypted methods like DNS-over-TLS (DoT) and DNS-over-HTTPS (DoH). Examine the motivations behind these changes, including protection against surveillance and data aggregation. Analyze the concerns raised by these new standards, particularly their impact on end users and network operators. Investigate the path to encryption, middleware developments, and the shift towards centralization. Consider the reduced visibility and move to the application layer, as well as supporting platforms. Gain insights into the ongoing debate surrounding DNS encryption and its potential consequences for internet infrastructure and privacy.
Overview
Syllabus
Intro
DNS The Path to Encryption
Why was it unencrypted?
Middleware through the years
New Standards
Centralization
Reduced visibility
Moving to the Application Layer
Supporting Platforms
Conclusions
Taught by
Black Hat