| Presentation | 2023-03-03 Detection Method of DoH Communications from Non-Encrypted Information at a Middlebox Yuya Takanashi, Shigetomo Kimura, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | DNS over HTTPS (DoH) enhances users' privacy by encripting DNScommunications over HTTPS instead of plaintext. However, it also leadsso many problems to network managers, since domain filtering cannot beapplied, although it can if DNS messages are plaintext, and DNS queriescannot be examined when an incident of phishing happens. This paperproposes a method to detect DoH communications from only unencryptedinformation on a middle box between users' and external networks and toidentify a destination resolver from the property that users send a DNSquery before they access to a new domain. Then, communicationexperiments executed to detect DoH communications over realcommunications by a web browser, the results show that the detectionaccuracy reaches 100% under some parameters, when the number of accessIP addresses is more than 350. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | DoH Detection Method / Non-Encrypted Informations / DNS over HTTPS / DNS / HTTPS |
| Paper # | IN2022-99 |
| Date of Issue | 2023-02-23 (IN) |
| Conference Information | |
| Committee | IN / NS |
|---|---|
| Conference Date | 2023/3/2(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Okinawa Convention Centre + Online |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | General |
| Chair | Kunio Hato(Internet Multifeed) / Tetsuya Oishi(NTT) |
| Vice Chair | Tsutomu Murase(Nagoya Univ.) / Takumi Miyoshi(Shibaura Insti of Tech.) |
| Secretary | Tsutomu Murase(KDDI Research) / Takumi Miyoshi(Nagaoka Univ. of Tech.) |
| Assistant | / Kotaro Mihara(NTT) |
| Paper Information | |
| Registration To | Technical Committee on Information Networks / Technical Committee on Network Systems |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Detection Method of DoH Communications from Non-Encrypted Information at a Middlebox |
| Sub Title (in English) | |
| Keyword(1) | DoH Detection Method |
| Keyword(2) | Non-Encrypted Informations |
| Keyword(3) | DNS over HTTPS |
| Keyword(4) | DNS |
| Keyword(5) | HTTPS |
| 1st Author's Name | Yuya Takanashi |
| 1st Author's Affiliation | University of Tsukuba(Univ. of Tsukuba) |
| 2nd Author's Name | Shigetomo Kimura |
| 2nd Author's Affiliation | University of Tsukuba(Univ. of Tsukuba) |
| Date | 2023-03-03 |
| Paper # | IN2022-99 |
| Volume (vol) | vol.122 |
| Number (no) | IN-407 |
| Page | pp.pp.199-204(IN), |
| #Pages | 6 |
| Date of Issue | 2023-02-23 (IN) |