Re-up: Mozilla’s implementation of DNS-over-HTTPS with Cloudflare shows why the locus of Internet governance is still located in the West https://m.thewire.in/article/tech/mozilla-dns-over-https-protocol-privacy-geopolitics/amp
This essay has received plenty attention, so here’s a thread with some useful links that further explain the problem: (1)
An IETF memo on centralisation caused by DNS-over-HTTPS: says it leads to decreased stability, increased security threats, and less visibility over those threats https://tools.ietf.org/id/draft-livingood-doh-implementation-risks-issues-03.html (2)
A survey of privacy and security concerns by GoDaddy’s principal dev: DNS-over-HTTPS may be “less secure and less trustworthy” than regular DNS Resolvers http://www.circleid.com/posts/20190906_dns_over_https_the_privacy_and_security_concerns/ (3)
If DNS hijacks are state-sponsored, it’s even more necessary for your own govt to know, and not leave the problem for Cloudflare to fix. We should stop believing that problems caused by technology will also be resolved by tech (4) https://twitter.com/amodm/status/1274401967809282048?s=20
Bert Hubert nails it: “recommending DoH [against oppressive regimes] may be a very techbro thing to do” but it is actually more harmful https://blog.powerdns.com/2019/09/25/centralised-doh-is-bad-for-privacy-in-2019-and-beyond/ (5)