Ασφάλεια πρωτοκόλλου DNS over https/tls
DNS over https/tls security
View/ Open
Keywords
DNS ; DNS over HTTPS ; DNS over TLSAbstract
The subject of this master's thesis is the dns over https system and how we can extract information from it that will help us increase security.
Initially, the need to implement DNS protocol came from the "inability" of the human brain to memorize large numbers. Each computer connected to a network has an ip address which consists of a 32 bit length number (and 128 bit with the ipv6 protocol). A computer is very easy to memorize such length addresses which is not true for a human being. This gave rise to the idea of a protocol that would assign ip addresses that are easy to read from a computer into names that are easier for the human brain to remember. So the domain name system has become an important and integral part of our daily internet activity. Each time we navigate the Internet, we send an email and generally use Internet services this protocol undertakes to assign ip addresses into domain names and send the required packages to the correct recipient.
The structure of this thesis is as follows:
- The first chapter will introduce the domain name system protocol and will describe how it works.
- The second chapter will introduce some basic concepts about security issues and in particular attack vectors on the dns protocol.
- The third chapter will analyze how dns over https works.
- The fourth chapter will analyze effective ways for DNS over HTTPS monitoring
- The fifth chapter will introduce decentralized blockchain-based DNS
- The sixth chapter will present the conclusions drawn from the research carried out.