The Impact of DNS Encryption on the Internet Ecosystem and its Users – WS 03 2020

From EuroDIG Wiki
Jump to navigation Jump to search

11 June 2020 | 11:30-13:00 | Studio The Hague | Live streaming | Live transcription | Forum
Consolidated programme 2020 overview / Day 1

Proposals: #58, #132, #143 (#161)

You are invited to become a member of the session Org Team! By joining a Org Team you agree to that your name and affiliation will be published at the respective wiki page of the session for transparency reasons. Please subscribe to the mailing list to join the Org Team and answer the email that will be send to you requesting your confirmation of subscription.

Session teaser

DNS over HTTPS (DoH) is a technical standard for enhancing the privacy and security of end users by preventing man-in-the-middle attacks and eavesdropping on DNS traffic. Browser vendors have proposed different implementation models of DoH but essentially some of these might lead to the centralization of internet infrastructure. The session will look into what are the effects of centralized and encrypted DNS name resolutions on cybersecurity as well as the effects of browser centric control of core infrastructure functions on policy making and Internet architecture.

Session description

The session will dive into different models of implementation of DoH, as suggested by the browser community, looking into their effects on end-user “security”. The DoH was amongst other things, designed to prevent man-in-the-middle attacks, in addition to enhancing end-users' privacy by encrypting the DNS traffic. Yet its broader effects on cybersecurity, beyond privacy, have not been addressed in the discussions so far. Some of the specific security questions this session will look into are following (but not excluded to): What are the potential effects of encrypted DNS on monitoring phishing attacks and/or malware distribution/spoofing etc? What is the role (if any) of DNS resolver operators (both with and without DoH) in mitigating the internet infrastructure security threats?

Additionally, the different implementation models of DoH (as proposed by the browser community) entail a potential risk of centralisation of internet infrastructure. Concentration of DNS resolution requests in several “focal points” may lead to significant change in the internet landscape and it raises the question about “Who is responsible for quality service of internet access for end-users?”. It may also lead to revision of the existing collaboration patterns between Internet Service Providers, Content Delivery Network operators and Browser vendors. Who will be responsible for “it just works” effect for end-users? What are the effects on the market balance in providing cybersecurity services if any? Which new business cases can arise from the shift in power balance?

Format

Until .

Please try out new interactive formats. EuroDIG is about dialogue not about statements, presentations and speeches. Workshops should not be organised as a small plenary.

Further reading

Links to relevant websites, declarations, books, documents. Please note we cannot offer web space, so only links to external resources are possible. Example for an external link: Website of EuroDIG

People

Until .

Please provide name and institution for all people you list here.

Focal Point

  • Mikhail Anisimov
  • Peter Koch

Organising Team (Org Team) List them here as they sign up.

  • Vittorio Bertola
  • Eva Ignatuschtschenko
  • Andrew Campling
  • Thomas Grob
  • Kris Shrishak

Key Participants

  • Ondrej Filip, CZ.NIC
  • Nicolai Leymann, Deutche Telecom
  • Vittorio Bertola, Head of Policy & Innovation, Open-Xchange

Moderator

  • Andrew Campling (session moderator)
  • Mikhail Anisimov (online moderator)

Remote Moderator

Trained remote moderators will be assigned on the spot by the EuroDIG secretariat to each session.

Reporter

Reporters will be assigned by the EuroDIG secretariat in cooperation with the Geneva Internet Platform. The Reporter takes notes during the session and formulates 3 (max. 5) bullet points at the end of each session that:

  • are summarised on a slide and presented to the audience at the end of each session
  • relate to the particular session and to European Internet governance policy
  • are forward looking and propose goals and activities that can be initiated after EuroDIG (recommendations)
  • are in (rough) consensus with the audience

Current discussion, conference calls, schedules and minutes

See the discussion tab on the upper left side of this page. Please use this page to publish:

  • dates for virtual meetings or coordination calls
  • short summary of calls or email exchange

Please be as open and transparent as possible in order to allow others to get involved and contact you. Use the wiki not only as the place to publish results but also to summarize the discussion process.

Messages

A short summary of the session will be provided by the Reporter.

Video record

Will be provided here after the event.

Transcript

Will be provided here after the event.