[Din] Evaluating Public DNS Services in the Wake of Increasing Centralization of DNS
Dirk Kutscher <ietf@dkutscher.net> Fri, 21 May 2021 08:20 UTC
Return-Path: <ietf@dkutscher.net>
X-Original-To: din@ietfa.amsl.com
Delivered-To: din@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 32DC43A1F15 for <din@ietfa.amsl.com>; Fri, 21 May 2021 01:20:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d5J1Fl13GZUG for <din@ietfa.amsl.com>; Fri, 21 May 2021 01:20:08 -0700 (PDT)
Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.131]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 68AB93A1F12 for <din@irtf.org>; Fri, 21 May 2021 01:20:08 -0700 (PDT)
Received: from [192.168.1.93] ([95.89.115.52]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPSA (Nemesis) id 1MyvFC-1lWLRs037K-00vvzh for <din@irtf.org>; Fri, 21 May 2021 10:20:06 +0200
From: Dirk Kutscher <ietf@dkutscher.net>
To: din@irtf.org
Date: Fri, 21 May 2021 10:20:04 +0200
X-Mailer: MailMate (1.14r5757)
Message-ID: <8C122C05-0D11-420B-B785-E0CE9C163B21@dkutscher.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"; format="flowed"; markup="markdown"
Content-Transfer-Encoding: 8bit
X-Provags-ID: V03:K1:mRQTVYEBIRC1tBj/i9nEQrK/GTO0DIjfu3YxKcTKIIiDRm1zkwP XP858+/ixaDXZPxPiGeUw81BLnejxP3iTUks1RBn3wr6kLQ3pISWpRjYhtxs+Py9i0TG1M+ yMzT6hgSDit/zFgOAf50KhciT3zyMp1N9hKAvcYNphn25OhLy6K0QB91wboGEHNjITE5etk SUsEWTuo/+u6k/pGRni+w==
X-UI-Out-Filterresults: notjunk:1;V03:K0:CyirCmUp378=:2Nuk7+oV/+hjU5D8/qQ4L0 AoAIkMDENJCAbhvUCuMOlKcHw1DVM7tvOwSTlEF/QwfsGO6J+ZlPYVYs73KgVnDIS7+y57VfP ePegQwCiLGlRwpF2QNf5OBYbbbk6jkokls7u6ryT5y1r2+2pvLyJTh3AwK1cHzHSWEIvBZCIK Yog7B2UzA2FfxyAzaQ0auKd8U8c9Vm/q6jk5naxKv71OQCmcPvJKHx1lz8GagVskLmErmYyDR 7AfrTv6zUlhE2CRBqsHh2Alm1Hiap+Kjh3/ILI89reZzH3F2LG3ePnhZXA4wF5pKrZpkhF8G9 XWbguJYGtVLLoKquFHZZJ6WsFguXn7AbtQcyOgcNjg5xAI7V33UOIVf3sA/7TT7Dpig4SmJ8T emD6+X7Kn0fzT5jUPEmU0KCfLFKGsedxxt2wB9Py6RuJE5yg+kmNWacLyAymuIBQGXgQ5CVKc TEGCGhHV5fSFbuRBcvZR9gRAG8evSbdM60AAiAi/X+jBdidtlRzia1Y8dwYVQZI5zhww1G8/R 1Gb+HXL28DL2FvHWpzMjwY=
Archived-At: <https://mailarchive.ietf.org/arch/msg/din/UcW2qvI9yZVEltTBeqRGnZ4Gipk>
Subject: [Din] Evaluating Public DNS Services in the Wake of Increasing Centralization of DNS
X-BeenThere: din@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of distributed Internet Infrastructure approaches, aspects such as Service Federation, and underlying technologies" <din.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/din>, <mailto:din-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/din/>
List-Post: <mailto:din@irtf.org>
List-Help: <mailto:din-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/din>, <mailto:din-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 May 2021 08:20:13 -0000
Trinh Viet Doan, Justus Fries, Vaibhav Bajpai published an IFIP-2021 paper on "Evaluating Public DNS Services in the Wake of Increasing Centralization of DNS" that could be of interest here: Recent studies have shown centralization in the Do- main Name System (DNS) around public DNS services, which are hosted on centrally managed infrastructure and advertise higher reliability, improved security, and faster response times for name resolutions. However, many of the recently emerged public DNS services have not yet been extensively studied regarding popularity and performance. In light of this, we use 10.6k RIPE Atlas probes and find that 28.3% of the probes (and the their host network by extension) use at least one public DNS service, with Google being the most popular public DNS service among these probes. We further quantify the response time benefits of such public DNS services using ≈2.5k RIPE Atlas probes deployed in home networks (1k of which are IPv6 capable): Overall, we provision around 12.7M DNS requests based on a set of 23 domains and ten centralized public DNS services both over IPv4 and IPv6. For comparison, we additionally resolve the same set of domains using the probes’ local resolvers, which are typically managed by the ISP. We observe that even though IP and AS paths to local resolvers are generally shorter, some public DNS services (e.g., Cloudflare), achieve faster responses over both IPv4 and IPv6. Across all continents, Cloudflare, Google, and OpenDNS exhibit the lowest response times out of all public resolvers for successful DNS measurements. However, probes in Europe (EU) and North America (NA) experience comparable latencies to public and local resolvers, thereby diminishing latency benefits of public DNS services. We also observe inflated path lengths to and response times (over both address families) from most public resolvers for probes in Africa (AF) and South America (SA). Based on our observations, we provide recommendations and discuss situations in which switching to public DNS services may be beneficial. https://vaibhavbajpai.com/documents/papers/proceedings/dns-networking-2021.pdf Best regards, Dirk
- [Din] Evaluating Public DNS Services in the Wake … Dirk Kutscher