Research Article
Improving Privacy for GeoIP DNS Traffic
@INPROCEEDINGS{10.1007/978-3-030-14413-5_1, author={Lanlan Pan and Xuebiao Yuchi and Xin Zhang and Anlei Hu and Jian Wang}, title={Improving Privacy for GeoIP DNS Traffic}, proceedings={Quality, Reliability, Security and Robustness in Heterogeneous Systems. 14th EAI International Conference, Qshine 2018, Ho Chi Minh City, Vietnam, December 3--4, 2018, Proceedings}, proceedings_a={QSHINE}, year={2019}, month={3}, keywords={DNS Privacy GeoIP Client subnet ECS EIL}, doi={10.1007/978-3-030-14413-5_1} }- Lanlan Pan
Xuebiao Yuchi
Xin Zhang
Anlei Hu
Jian Wang
Year: 2019
Improving Privacy for GeoIP DNS Traffic
QSHINE
Springer
DOI: 10.1007/978-3-030-14413-5_1
Abstract
Many authoritative nameservers today support GeoIP feature. EDNS Client Subnet (ECS) extension helps GeoIP authoritative nameserver to address the public recursive resolver’s proximity IP problem. However, ECS raises some privacy concerns since recursive resolver leaks client subnet information on the resolution path to the authoritative nameserver. In this paper we introduce an EDNS ISP Location (EIL) extension, to make privacy improvement for GeoIP DNS traffic while preserve the ECS optimization on the end-user experience, reduce response latency, and increase cache-hit rate. We analysis 910.9K Chinese IPv4 CIDR/24 subnets, find that 479.9K TEL subnets, 234.0K UNI subnets, and 66.3K MOB subnets can enable EIL to optimize DNS traffic.
