{"id":1774,"date":"2021-08-08T01:42:30","date_gmt":"2021-08-08T08:42:30","guid":{"rendered":"https:\/\/ant.isi.edu\/blog\/?p=1774"},"modified":"2021-08-08T01:42:30","modified_gmt":"2021-08-08T08:42:30","slug":"new-paper-and-talk-institutional-privacy-risks-in-sharing-dns-data-at-applied-networking-research-workshop-2021","status":"publish","type":"post","link":"https:\/\/ant.isi.edu\/blog\/?p=1774","title":{"rendered":"New paper and talk \u201cInstitutional Privacy Risks in Sharing DNS Data\u201d at Applied Networking Research Workshop 2021"},"content":{"rendered":"\n

Basileal Imana presented the paper \u201cInstitutional Privacy Risks in Sharing DNS Data<\/a>\u201d by Basileal Imana, Aleksandra Korolova and John Heidemann at Applied Networking Research Workshop<\/a> held virtually from July 26-28th, 2021.<\/p>\n\n\n\n

From the abstract:<\/p>\n\n\n\n

We document institutional privacy as a new risk
posed by DNS data collected at authoritative servers, even
after caching and aggregation by DNS recursives. We are the
first to demonstrate this risk by looking at leaks of e-mail
exchanges which show communications patterns, and leaks
from accessing sensitive websites, both of which can harm an
institution\u2019s public image. We define a methodology to identify queries from institutions and identify leaks. We show the
current practices of prefix-preserving anonymization of IP
addresses and aggregation above the recursive are not sufficient to protect institutional privacy, suggesting the need for
novel approaches.<\/p>

<\/p><\/blockquote>\n\n\n\n

\"\"<\/a>
Number of MX and DNSBL queries in a week-long root DNS data that can potentially leak email-related activity<\/figcaption><\/figure>\n\n\n\n

The data from this paper is available upon request, please see our project page<\/a>.<\/p>\n\n\n\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Basileal Imana presented the paper \u201cInstitutional Privacy Risks in Sharing DNS Data\u201d by Basileal Imana, Aleksandra Korolova and John Heidemann at Applied Networking Research Workshop held virtually from July 26-28th, 2021. From the abstract: We document institutional privacy as a new riskposed by DNS data collected at authoritative servers, evenafter caching and aggregation by DNS […]<\/p>\n","protected":false},"author":636,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[289,284,282],"tags":[328,63,58,5,93,142,57],"class_list":["post-1774","post","type-post","status-publish","format-standard","hentry","category-dns","category-papers-publications","category-publications","tag-anrw","tag-dns","tag-isi","tag-papers","tag-privacy","tag-researchroot","tag-usc"],"_links":{"self":[{"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1774","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/users\/636"}],"replies":[{"embeddable":true,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1774"}],"version-history":[{"count":4,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1774\/revisions"}],"predecessor-version":[{"id":1780,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=\/wp\/v2\/posts\/1774\/revisions\/1780"}],"wp:attachment":[{"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1774"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1774"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ant.isi.edu\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1774"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}