DOH (DNS over HTTPS) looks like a very small change from DNS over TLS, as they both use very similar formats on the wire. However, DOH treats the DNS response as a web object. It can be cached. It can be pre-fetched. Presumably it can be embedded in web pages. This creates the possibility of a browser defining its own DNS environment completely independent of the platformer that runs the browser, independent of the local service provider and even independent of the DNS as we know it…
Given that some 80% of all user platforms use Chrome as their browser these days then that places a huge amount of unique market power in the hands of the Chrome browser and its provider, Alphabet.
One thought on “”
looks like the industry is broadly moving ahead with this. Google will start switching some Chrome DNS requests to DoH in in October; Mozilla will do the same for Firefox in late September.