Talk With an Expert

A New Needle and Haystack: Detecting DNS over HTTPS Usage

A New Needle and Haystack: Detecting DNS over HTTPS Usage (PDF, 4.36MB)Published: 10 Sep, 2019
Created by
Drew Hjelm

Encrypted DNS technologies such as DNS over HTTPS (DoH) give users new means to protect privacy while using the Internet. Organizations will face new obstacles for monitoring network traffic on their networks as users attempt to use encrypted DNS. First, the paper presents several tests to perform to detect encrypted DNS using endpoint tools and network traffic monitoring. The goal of this research is to present several controls that organizations can implement to prevent the use of encrypted DNS on enterprise networks.