Intent to prototype: DNS over OHTTP

151 views

Skip to first unread message

Valentin Gosu

unread,

Apr 10, 2023, 4:33:09 PM4/10/23

to dev-pl...@mozilla.org

Summary: Oblivious HTTP(OHTTP) increases user privacy by hiding users IP addresses from servers by leveraging an HTTP Proxy to connect to a target resource. The proxy will be aware of the client’s IP addresses but it will only see encrypted target messages. On the other hand the target resource will not see the user’s IP address, just the content of the request. OHTTP has limited applicability and can be used when applications do not need to carry state between requests. Examples of supported use cases are DNS queries and telemetry submission. For the purpose of this experiment we will focus on testing OHTTP with DNS over HTTPS(DoH) transactions only.

Bug: Bug: 1795940 [meta] Oblivious HTTP
Specification: https://datatracker.ietf.org/doc/html/draft-ietf-ohai-ohttp
Standards Body: IETF - Oblivious HTTP Application Intermediation(workgroup)
Platform coverage: Desktop
Preferences: Testing Instructions
DevTools bug: N/A
Link to standards-positions discussion: N/A
Other browsers: N/A
web-platform-tests: N/A

Other OHTTP Implementations:

Chrome: 2023-03-15 announcedpartnership with Fastly to operate an Oblivious HTTP relay (OHTTP relay) as part of FLEDGE’s 𝑘-anonymity server.
Cloudflare: OHTTP Gateway implementation

Reply all

Reply to author

Forward

0 new messages