Search CORE

3 research outputs found

Assessing the Privacy Benefits of Domain Name Encryption

Author: Aas Josh
Alowaisheq Eihal
Antonakakis Manos
Antonakakis Manos
Aryan Simurgh
Bortzmeyer S.
Breslau L.
Castillo-Perez S.
Castillo-Perez Sergio
Chai Zimo
Chung Taejoong
Clayton Richard
Colitti Lorenzo
Crandall Jedidiah R.
Dai Tianxiang
Duan Hai-Xin
Dunna Arun
Durumeric Zakir
Dyer K. P.
Eastlake D.
Gabrilovich Evgeniy
Hao Shuai
Hayes Jamie
Herrmann Dominik
Hoang Nguyen Phong
Hoang Nguyen Phong
Kintis Panagiotis
Kintis Panagiotis
Kountouras Athanasios
Lauinger Tobias
Lu Liming
Lu Y.
Nabi Zubair
Niaki Arian Akhavan
Nikiforakis Nick
Pearce Paul
Rweyemamu Walter
Scott Will
Szurdi Janos
Wang Tao
Weimer Florian
Wright Charles V
Xu Xueyang
Publication venue: 'Association for Computing Machinery (ACM)'
Publication date: 08/07/2020
Field of study

As Internet users have become more savvy about the potential for their Internet communication to be observed, the use of network traffic encryption technologies (e.g., HTTPS/TLS) is on the rise. However, even when encryption is enabled, users leak information about the domains they visit via DNS queries and via the Server Name Indication (SNI) extension of TLS. Two recent proposals to ameliorate this issue are DNS over HTTPS/TLS (DoH/DoT) and Encrypted SNI (ESNI). In this paper we aim to assess the privacy benefits of these proposals by considering the relationship between hostnames and IP addresses, the latter of which are still exposed. We perform DNS queries from nine vantage points around the globe to characterize this relationship. We quantify the privacy gain offered by ESNI for different hosting and CDN providers using two different metrics, the k-anonymity degree due to co-hosting and the dynamics of IP address changes. We find that 20% of the domains studied will not gain any privacy benefit since they have a one-to-one mapping between their hostname and IP address. On the other hand, 30% will gain a significant privacy benefit with a k value greater than 100, since these domains are co-hosted with more than 100 other domains. Domains whose visitors' privacy will meaningfully improve are far less popular, while for popular domains the benefit is not significant. Analyzing the dynamics of IP addresses of long-lived domains, we find that only 7.7% of them change their hosting IP addresses on a daily basis. We conclude by discussing potential approaches for website owners and hosting/CDN providers for maximizing the privacy benefits of ESNI.Comment: In Proceedings of the 15th ACM Asia Conference on Computer and Communications Security (ASIA CCS '20), October 5-9, 2020, Taipei, Taiwa

arXiv.org e-Print Archive

Crossref

Understanding the linux 2.6.8.1 cpu scheduler

Author: Josh Aas
Publication venue
Publication date
Field of study

CiteSeerX

Understanding the Linux 2.6.8.1 CPU Scheduler

Author: Josh Aas
Publication venue
Publication date
Field of study

This paper on the Linux 2.6.8.1 scheduler was inspired by Mel Gorman's thesis on the Linux virtual memory (VM) system [6], which current Linux VM developers probably reference and value more than any other piece of documentation on the subjec

CiteSeerX