Oblivious DNS-over-HTTPS offers privacy enhancements to secure lookup protocol

Security engineers are proposing an experimental protocol that promises greater privacy in how DNS, the internet’s equivalent of a telephone directory, operates.

Oblivious DNS-over-HTTPS (ODoH) describes a protocol that allows clients to hide their IP addresses from DNS resolvers through proxies relaying encrypted DNS-over-HTTPS (DoH) messages.

The approach creates a setup that means no one server is aware of both a client’s IP address and the content of DNS queries and answers – a significant privacy benefit.