Microsoft says yes to future encrypted DNS requests in Windows


Microsoft will (eventually) support secure DNS requests over the DoH protocol, and maybe over some others at some point.

Enlarge / Microsoft will (eventually) support secure DNS requests over the DoH protocol, and maybe over some others at some point. (credit: Yuichiro Chino via Getty Images)

In a post yesterday to the Microsoft Tech Community blog, Microsoft Windows Core Networking team members Tommy Jensen, Ivan Pashov, and Gabriel Montenegro announced that Microsoft is planning to adopt support for encrypted Domain Name System queries in order to "close one of the last remaining plain-text domain name transmissions in common web traffic."

That support will first take the form of integration with DNS over HTTPS (DoH), a standard proposed by the Internet Engineering Task Force and supported by Mozilla, Google, and Cloudflare, among others. "As a platform, Windows Core Networking seeks to enable users to use whatever protocols they need, so we’re open to having other options such as DNS over TLS (DoT) in the future," wrote Jensen, Pashov, and Montenegro. "For now, we're prioritizing DoH support as the most likely to provide immediate value to everyone. For example, DoH allows us to reuse our existing HTTPS infrastructure."

But Microsoft is being careful about how it deploys this compatibility given the current political fight over DoH being waged by Internet service providers concerned that they'll lose a lucrative source of customer behavior data.

Read 6 remaining paragraphs | Comments

via Biz & IT – Ars Technica https://ift.tt/2pw0IMc

Comments