[Din] Evaluating Public DNS Services in the Wake of Increasing Centralization of DNS

Dirk Kutscher <ietf@dkutscher.net> Fri, 21 May 2021 08:20 UTC

Return-Path: <ietf@dkutscher.net>
X-Original-To: din@ietfa.amsl.com
Delivered-To: din@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 32DC43A1F15 for <din@ietfa.amsl.com>; Fri, 21 May 2021 01:20:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d5J1Fl13GZUG for <din@ietfa.amsl.com>; Fri, 21 May 2021 01:20:08 -0700 (PDT)
Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.131]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 68AB93A1F12 for <din@irtf.org>; Fri, 21 May 2021 01:20:08 -0700 (PDT)
Received: from [192.168.1.93] ([95.89.115.52]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPSA (Nemesis) id 1MyvFC-1lWLRs037K-00vvzh for <din@irtf.org>; Fri, 21 May 2021 10:20:06 +0200
From: Dirk Kutscher <ietf@dkutscher.net>
To: din@irtf.org
Date: Fri, 21 May 2021 10:20:04 +0200
X-Mailer: MailMate (1.14r5757)
Message-ID: <8C122C05-0D11-420B-B785-E0CE9C163B21@dkutscher.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"; format=flowed; markup=markdown
Content-Transfer-Encoding: 8bit
X-Provags-ID: V03:K1:mRQTVYEBIRC1tBj/i9nEQrK/GTO0DIjfu3YxKcTKIIiDRm1zkwP XP858+/ixaDXZPxPiGeUw81BLnejxP3iTUks1RBn3wr6kLQ3pISWpRjYhtxs+Py9i0TG1M+ yMzT6hgSDit/zFgOAf50KhciT3zyMp1N9hKAvcYNphn25OhLy6K0QB91wboGEHNjITE5etk SUsEWTuo/+u6k/pGRni+w==
X-UI-Out-Filterresults: notjunk:1;V03:K0:CyirCmUp378=:2Nuk7+oV/+hjU5D8/qQ4L0 AoAIkMDENJCAbhvUCuMOlKcHw1DVM7tvOwSTlEF/QwfsGO6J+ZlPYVYs73KgVnDIS7+y57VfP ePegQwCiLGlRwpF2QNf5OBYbbbk6jkokls7u6ryT5y1r2+2pvLyJTh3AwK1cHzHSWEIvBZCIK Yog7B2UzA2FfxyAzaQ0auKd8U8c9Vm/q6jk5naxKv71OQCmcPvJKHx1lz8GagVskLmErmYyDR 7AfrTv6zUlhE2CRBqsHh2Alm1Hiap+Kjh3/ILI89reZzH3F2LG3ePnhZXA4wF5pKrZpkhF8G9 XWbguJYGtVLLoKquFHZZJ6WsFguXn7AbtQcyOgcNjg5xAI7V33UOIVf3sA/7TT7Dpig4SmJ8T emD6+X7Kn0fzT5jUPEmU0KCfLFKGsedxxt2wB9Py6RuJE5yg+kmNWacLyAymuIBQGXgQ5CVKc TEGCGhHV5fSFbuRBcvZR9gRAG8evSbdM60AAiAi/X+jBdidtlRzia1Y8dwYVQZI5zhww1G8/R 1Gb+HXL28DL2FvHWpzMjwY=
Archived-At: <https://mailarchive.ietf.org/arch/msg/din/UcW2qvI9yZVEltTBeqRGnZ4Gipk>
Subject: [Din] Evaluating Public DNS Services in the Wake of Increasing Centralization of DNS
X-BeenThere: din@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of distributed Internet Infrastructure approaches, aspects such as Service Federation, and underlying technologies" <din.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/din>, <mailto:din-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/din/>
List-Post: <mailto:din@irtf.org>
List-Help: <mailto:din-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/din>, <mailto:din-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 May 2021 08:20:13 -0000

Trinh Viet Doan, Justus Fries, Vaibhav Bajpai published an IFIP-2021 
paper on "Evaluating Public DNS Services in the Wake of Increasing 
Centralization of DNS" that could be of interest here:

Recent studies have shown centralization in the Do- main Name System 
(DNS) around public DNS services, which are hosted on centrally managed 
infrastructure and advertise higher reliability, improved security, and 
faster response times for name resolutions. However, many of the 
recently emerged public DNS services have not yet been extensively 
studied regarding popularity and performance. In light of this, we use 
10.6k RIPE Atlas probes and find that 28.3% of the probes (and the their 
host network by extension) use at least one public DNS service, with 
Google being the most popular public DNS service among these probes. We 
further quantify the response time benefits of such public DNS services 
using ≈2.5k RIPE Atlas probes deployed in home networks (1k of which 
are IPv6 capable): Overall, we provision around 12.7M DNS requests based 
on a set of 23 domains and ten centralized public DNS services both over 
IPv4 and IPv6. For comparison, we additionally resolve the same set of 
domains using the probes’ local resolvers, which are typically managed 
by the ISP. We observe that even though IP and AS paths to local 
resolvers are generally shorter, some public DNS services (e.g., 
Cloudflare), achieve faster responses over both IPv4 and IPv6. Across 
all continents, Cloudflare, Google, and OpenDNS exhibit the lowest 
response times out of all public resolvers for successful DNS 
measurements. However, probes in Europe (EU) and North America (NA) 
experience comparable latencies to public and local resolvers, thereby 
diminishing latency benefits of public DNS services. We also observe 
inflated path lengths to and response times (over both address families) 
from most public resolvers for probes in Africa (AF) and South America 
(SA). Based on our observations, we provide recommendations and discuss 
situations in which switching to public DNS services may be beneficial.

https://vaibhavbajpai.com/documents/papers/proceedings/dns-networking-2021.pdf





Best regards,
Dirk