On Cross-Layer Interactions of QUIC, Encrypted DNS and HTTP/3: Design, Evaluation, and Dataset

Every Web session involves a DNS resolution. While, in the last decade, we witnessed a promising trend towards an encrypted Web in general, DNS encryption has only recently gained traction with the standardisation of DNS over TLS (DoT) and DNS over HTTPS (DoH). Meanwhile, the rapid rise of QUIC depl...

Celý popis

Uložené v:
Podrobná bibliografia
Vydané v:IEEE eTransactions on network and service management Ročník 21; číslo 3; s. 2992 - 3007
Hlavní autori: Sengupta, Jayasree, Kosek, Mike, Fries, Justus, Ferlin-Reiter, Simone, Bajpai, Vaibhav
Médium: Journal Article
Jazyk:English
Vydavateľské údaje: IEEE 01.06.2024
Predmet:
Cloud computing
Computer Science
Cross-layer interaction
Cryptography
Datavetenskap
Design evaluation
Distributed computer systems
DNS
Domain Name System
Encryption
Flocculation
HTTP
HTTP/3
Internet protocols
IP networks
IP-network
Privacy
Protocols
QUIC
Servers
Web
ISSN:1932-4537, 1932-4537
On-line prístup:Získať plný text
Tagy: Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
Popis
Shrnutí:Every Web session involves a DNS resolution. While, in the last decade, we witnessed a promising trend towards an encrypted Web in general, DNS encryption has only recently gained traction with the standardisation of DNS over TLS (DoT) and DNS over HTTPS (DoH). Meanwhile, the rapid rise of QUIC deployment has now opened up an exciting opportunity to utilise the same protocol to not only encrypt Web communications, but also DNS. In this paper, we evaluate this benefit of using QUIC to coalesce name resolution via DNS over QUIC (DoQ), and Web content delivery via HTTP/3 (H3) with 0-RTT. We compare this scenario using several possible combinations where H3 is used in conjunction with DoH and DoQ, as well as the unencrypted DNS over UDP (DoUDP). We observe, that when using H3 1-RTT, page load times with DoH can get inflated by >30% over fixed-line and by >50% over mobile when compared to unencrypted DNS with DoUDP. However, this cost of encryption can be drastically reduced when encrypted connections are coalesced (DoQ + H3 0-RTT), thereby reducing the page load times by 1/3 over fixed-line and 1/2 over mobile, overall making connection coalescing with QUIC the best option for encrypted communication on the Internet.
ISSN:1932-4537
1932-4537
DOI:10.1109/TNSM.2024.3383787