Languagesx
English Deutsch
Subscribe
Home OpenDNS Adds Encrypted Security Today

OpenDNS Adds Encrypted Security Today

OpenDNS announced a technology preview today for Macs running their DNS services called DNSCrypt. Think of this as doing for the DNS protocol what HTTPS does for the Web protocols. Like its mainline service, it is freely available, and Windows and Linux versions are promised for next year. You can download the code here for the Mac OS. They will eventually post all of their code on GitHub for public scrutiny.

DNSCrypt solves one critical flaw in the DNS process: the ability to snoop as a “man in the middle” of a conversation between two computers, because it encrypts all DNS traffic between your computer and the Internet. This is a real concern, and there have been several exploits lately that took advantage of DNS requests, because the vast majority of them are issued in the clear. (Just like most emails.)

The version of DNSCrypt that is available is a “preview” meaning that it could have problems in daily use. We haven’t yet tried it.

DNSCrypt isn’t the only game in town, and for years an effort called DNSSEC has been trying to take hold for increased DNS security. DNSSEC solves a larger problem: not only does it provided an encrypted channel, but also adds authentication and a chain of trust to ensure that the expected DNS record hasn’t been tampered with. They can be used together. Sadly, few sites have implemented it to date.

“In theory, the user can just run their own DNS server on their own machine with DNSSEC enabled, and be protected,” says Paul Mockapetris, the inventor of DNS and now the chief scientist with Nominum, a DNS supplier. “But in practice, a variety of last mile, performance, and code readiness issues deter all but die-hard end users from doing so.” Mockapetris says that DNSCrypt “probably doesn’t add much for the enterprise user who is sitting at his desk, but could be huge for an enterprise user who is using an open hotspot in some random wine bar in a foreign country or an ancient WiFi system in some hotel that lets one guest see another guest’s traffic.” Given the number of hotels that I have stayed at that have open networks, I would say this is a real issue. (See my suggestion here for closing your file shares when you travel.)

“It would have been better to have the DNSSEC designers bite the bullet and insist on and design for end-to-end DNSSEC, but until then DNSCrypt is an idea whose time has come,” he says.

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the tech industry for major developments, new product launches, AI breakthroughs, video game releases and other newsworthy events. Editors assign relevant stories to staff writers or freelance contributors with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

tags

Related News

Logitech offers mouse and keyboard users free ChatGPT upgrade with AI Prompt Builder. A robotic hand with silver metallic fingers holds a black computer mouse on a red background. Text at the top of the image reads from left to right: "Recipes Instructions 0". Below that is a text box with the following options, top to bottom: "Rephrase", "Summarize", "Reply", "Create Email", "Brainstorm".
Logitech offers mouse and keyboard users free ChatGPT upgrade
Suswati Basu
Streets of Sakarya city during the Ottoman Empire
Medium bans AI-generated content from its paid Partner Program
Sophie Atkinson
How to tell if something is written by ChatGPT
How to tell if something is written by ChatGPT
James Jones
Elon Musk black and white side profile, on a dark blue background which features a large Tesla logo. wads of money rain down on the logo
Elon Musk to raise Tesla AI staff salaries to curb OpenAI poaching
Ali Rees
a conceptual image with a magnifying glass and large 'AI' letters to symbolize AI detectors.
5 best AI content detectors
James Jones

Most Popular Tech Stories

Latest News

A screenshot from the Steam version of Dwarf Fortress
Gaming

Dwarf Fortress - long awaited Adventure mode comes to one of the greatest games of all time, but what actually is it?
Paul McNally2 hours

The stunning piece of gaming history that is Dwarf Fortress, a game that you quite possibly have never played before and one that you absolutely should start playing the second...

Popular TopicsArrow right.svg

AI
AI
AR / VR
AR / VR
Cryptocurrency
Cryptocurrency
Gaming
Gaming
Smartphone
Smartphone
Gambling
Gambling
Wearables
Wearables
Web
Web

Get the biggest tech headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Tech News

    Explore the latest in tech with our Tech News. We cut through the noise for concise, relevant updates, keeping you informed about the rapidly evolving tech landscape with curated content that separates signal from noise.

    In-Depth Tech Stories

    Explore tech impact in In-Depth Stories. Narrative data journalism offers comprehensive analyses, revealing stories behind data. Understand industry trends for a deeper perspective on tech's intricate relationships with society.

    Expert Reviews

    Empower decisions with Expert Reviews, merging industry expertise and insightful analysis. Delve into tech intricacies, get the best deals, and stay ahead with our trustworthy guide to navigating the ever-changing tech market.