Re: [Resolverless-dns] Paper on Resolver-less DNS

"Ralf Weber" <dns@fl1ger.de> Sat, 17 August 2019 21:13 UTC

Return-Path: <dns@fl1ger.de>
X-Original-To: resolverless-dns@ietfa.amsl.com
Delivered-To: resolverless-dns@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 25CF112006F for <resolverless-dns@ietfa.amsl.com>; Sat, 17 Aug 2019 14:13:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id E0f_dLvdbXhp for <resolverless-dns@ietfa.amsl.com>; Sat, 17 Aug 2019 14:13:21 -0700 (PDT)
Received: from smtp.guxx.net (nyx.guxx.net [85.10.208.173]) by ietfa.amsl.com (Postfix) with ESMTP id 2D895120041 for <resolverless-dns@ietf.org>; Sat, 17 Aug 2019 14:13:21 -0700 (PDT)
Received: by nyx.guxx.net (Postfix, from userid 107) id 127EE5F42D41; Sat, 17 Aug 2019 23:13:19 +0200 (CEST)
Received: from [172.19.152.61] (p54B8ABDF.dip0.t-ipconnect.de [84.184.171.223]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by nyx.guxx.net (Postfix) with ESMTPSA id 650FB5F40329; Sat, 17 Aug 2019 23:13:19 +0200 (CEST)
From: Ralf Weber <dns@fl1ger.de>
To: Erik Sy <sy@informatik.uni-hamburg.de>
Cc: resolverless-dns@ietf.org
Date: Sat, 17 Aug 2019 23:13:18 +0200
X-Mailer: MailMate (1.12.5r5635)
Message-ID: <BCB00649-8A83-4962-A941-B745E66F8784@fl1ger.de>
In-Reply-To: <fe3af997-096d-82e8-b9c5-7e6c17558514@informatik.uni-hamburg.de>
References: <CAHbrMsBhR1yaLxQk7wZk54Jdf5nvkS03KC3UTae0Famu2+SV8g@mail.gmail.com> <16840451.Gnsi7N2eSB@linux-9daj> <71662803-f194-a921-84da-b8c9e8e32cb5@informatik.uni-hamburg.de> <6216510.zdPCGfSLMl@linux-9daj> <fe3af997-096d-82e8-b9c5-7e6c17558514@informatik.uni-hamburg.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/resolverless-dns/B885r6vJPwC1Dx27gfgszPTtZ-k>
Subject: Re: [Resolverless-dns] Paper on Resolver-less DNS
X-BeenThere: resolverless-dns@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Resolverless DNS <resolverless-dns.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/resolverless-dns/>
List-Post: <mailto:resolverless-dns@ietf.org>
List-Help: <mailto:resolverless-dns-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 17 Aug 2019 21:13:23 -0000

Moin!

On 17 Aug 2019, at 21:35, Erik Sy wrote:
> The privacy problem is that a significant share of DNS resolvers monitor
> the users' online activities, aggregate these data in user profiles and
> use these profiles within behavioral advertising or share these user
> profiles with other parties. Here [1], you can find a comparative
> analysis of public DNS resolver privacy policies substantiating my claims.
The majority of DNS resolvers for end users are still run by ISPs and
Telcos. In that paper you reference the only company that can be seen
as an ISP is Level3, although there resolver in contrast to mosts ISPs
is open. The other are the usual open resolver vendors. So this paper
clearly misses a large part of the resolver population.

And my experiences with ISPs and Telkos is that they are, probably
because most of them are regulated very sensitive to privacy and
data analysis for marketing and advertising. A lot of them do or
let others do analytics on their data, mostly after being anonymised,
for security purposes, but not more.

So long
-Ralf
—--
Ralf Weber