Alexandra Nisenoff, Nick Feamster, Madeleine A Hoofnagle†, Sydney Zink. (University of Chicago and †Northwestern)

Domain Name System (DNS) queries map domains that are readable by humans into their corresponding IP addresses. As a way of mitigating the privacy risks associated with DNS queries, protocols such as DNS over HTTPS (DoH) and DNS over TLS (DoT) have been adopted by many major browsers and operating systems. In this paper we present the results of a small-scale online survey with the goal of probing users’ sentiments on Private DNS in Android 9 Pie as well as DoH in Firefox. As many users decide to stick with the default setting, it becomes paramount developers choose defaults that benefit users. While many users choose to stick with the default setting, even given additional information, there are users who would change their DNS settings when given information on what the specific settings actually do. We also see that users believe DNS settings accomplish one thing, but actually the settings do something else. Finally, the survey uncovered interesting trends in users’ knowledge of and trust in DNS service providers.

View More Papers

SymQEMU: Compilation-based symbolic execution for binaries

Sebastian Poeplau (EURECOM and Code Intelligence), Aurélien Francillon (EURECOM)

Read More

A Formal Analysis of the FIDO UAF Protocol

Haonan Feng (Beijing University of Posts and Telecommunications), Hui Li (Beijing University of Posts and Telecommunications), Xuesong Pan (Beijing University...

Read More

Model-Agnostic Defense for Lane Detection against Adversarial Attack

Henry Xu, An Ju, and David Wagner (UC Berkeley) Baidu Security Auto-Driving Security Award Winner ($1000 cash prize)!

Read More

PrivacyFlash Pro: Automating Privacy Policy Generation for Mobile Apps

Sebastian Zimmeck (Wesleyan University), Rafael Goldstein (Wesleyan University), David Baraka (Wesleyan University)

Read More