https://blog.mozilla.org/netpolicy/2021/06/10/working-in-the-open-enhancing-privacy-and-security-in-the-dns/ Mozilla Menu * Internet Health * Technology * Give * Discover Firefox Open Policy & Advocacy Mozilla's official blog on open Internet policy initiatives and developments * Explore * Categories * Search this site [ ] Search Categories: Cybersecurity Encryption Safety Security Transparency Share: * Twitter Working in the open: Enhancing privacy and security in the DNS Mozilla June 10, 2021 In 2018, we started pioneering work on securing one of the oldest parts of the Internet, one that had till then remained largely untouched by efforts to make the web safer and more private: the Domain Name System (DNS). We passed a key milestone in that endeavor last year, when we rolled out DNS-over-HTTPS (DoH) technology by default in the United States, thus improving privacy and security for millions of people. Given the transformative nature of this technology and in line with our mission commitment to transparency and collaboration, we have consistently sought to implement DoH thoughtfully and inclusively. Today we're sharing our latest update on that continued effort. Between November 2020 and January 2021 we ran a public comment period , to give the broader community who care about the DNS - including human rights defenders; technologists; and DNS service providers - the opportunity to provide recommendations for our future DoH work. Specifically, we canvassed input on our Trusted Recursive Resolver (TRR) policies, the set of privacy, security, and integrity commitments that DNS recursive resolvers must adhere to in order to be considered as default partner resolvers for Mozilla's DoH roll-out. We received rich feedback from stakeholders across the world, and we continue to reflect on how it can inform our future DoH work and our TRR policies. As we continue that reflection, we're today publishing the input we received during the comment period - acting on a commitment to transparency that we made at the outset of the process. You can read the comments here. During the comment period and prior, we received substantial input on the blocklist publication requirement of our TRR policies. This requirement means that resolvers in our TRR programme must publicly release the list of domains that they block access to. This blocking could be the result of either legal requirements that the resolver is subject to, or because a user has explicitly consented to certain forms of DNS blocking. We are aware of the downsides associated with blocklist publication in certain contexts, and one of the primary reasons for undertaking our comment period was to solicit constructive feedback and suggestions on how to best ensure meaningful transparency when DNS blocking takes place. Therefore, while we reflect on the input regarding our TRR policies and solutions for blocking transparency, we will relax this blocklist publication requirement. As such, current or prospective TRR partners will not be required to mandatorily publish DNS blocklists from here on out. DoH is a transformative technology. It is relatively new and, as such, is of interest to a variety of stakeholders around the world. As we bring the privacy and security benefits of DoH to more Firefox users, we will continue our proactive engagement with internet service providers, civil society organisations, and everyone who cares about privacy and security in the internet ecosystem. We look forward to this collaborative work. Stay tuned for more updates in the coming months. Previous article The Van Buren decision is a strong step forward for public interest research online June 4, 2021 More articles in "Cybersecurity" * The Van Buren decision is a strong step forward for public interest research online June 4, 2021 * Defending users' security in Mauritius May 12, 2021 * Continuing to Protect our Users in Kazakhstan December 18, 2020 * Mozilla DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) Comment Period: Help us enhance security and privacy online November 18, 2020 * The EU's Current Approach to QWACs (Qualified Website Authentication Certificates) will Undermine Security on the Open Web October 8, 2020 Recent articles * DoH Comment Period Responses June 10, 2021 * The Van Buren decision is a strong step forward for public interest research online June 4, 2021 * Advancing system-level change with ad transparency in the EU DSA May 27, 2021 * Mozilla reacts to the European Commission's guidance on the revision of the EU Code of Practice on Disinformation May 26, 2021 * Mozilla publishes position paper on EU Digital Services Act May 18, 2021 Love the Web? Get the Mozilla newsletter and help us keep it open and free. Your e-mail address [ ] Language [English ] (*) HTML ( ) Text [ ] I'm okay with Mozilla handling my info as explained in this Privacy Policy. Sign up now We will only send you Mozilla-related information. Thanks! If you haven't previously confirmed a subscription to a Mozilla-related newsletter you may have to do so. Please check your inbox or your spam filter for an e-mail from us. More Mozilla Blogs * The Mozilla Blog * The Firefox Frontier * Internet Citizen * about:community * Mozilla Hacks More articles * privacy * Uncategorized * Trust * Security * Europe * Data protection * Transparency * User Rights privacy * [place-thumb] India's new intermediary liability and digital media regulations will harm the open internet March 2, 2021 * [place-thumb] Five issues shaping data, tech and privacy in the African region in 2021 January 27, 2021 * [place-thumb] Mozilla DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) Comment Period: Help us enhance security and privacy online November 18, 2020 * [place-thumb] India's ambitious non personal data report should put privacy first, for both individuals and communities September 12, 2020 * [place-thumb] Practicing Lean Data and Defending "Lean Data" August 20, 2020 Uncategorized * [place-thumb] DoH Comment Period Responses June 10, 2021 * [place-thumb] Mozilla files joint amicus brief in support of California net neutrality law May 12, 2021 * [place-thumb] Mozilla Mornings on the DSA: Setting the standard for third-party platform auditing April 19, 2021 * [place-thumb] Mozilla Mornings: Unpacking the DSA's risk-based approach February 15, 2021 * [place-thumb] Mozilla reacts to publication of the EU Democracy Action Plan December 3, 2020 Trust * [place-thumb] Defending users' security in Mauritius May 12, 2021 * [place-thumb] Continuing to Protect our Users in Kazakhstan December 18, 2020 * [place-thumb] Mozilla reacts to publication of the EU Democracy Action Plan December 3, 2020 * [place-thumb] Mozilla DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) Comment Period: Help us enhance security and privacy online November 18, 2020 * [place-thumb] Mozilla Mornings on addressing online harms through advertising transparency October 19, 2020 Security * [place-thumb] Working in the open: Enhancing privacy and security in the DNS June 10, 2021 * [place-thumb] The Van Buren decision is a strong step forward for public interest research online June 4, 2021 * [place-thumb] Mozilla DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) Comment Period: Help us enhance security and privacy online November 18, 2020 * [place-thumb] The EU's Current Approach to QWACs (Qualified Website Authentication Certificates) will Undermine Security on the Open Web October 8, 2020 * [place-thumb] Australian watchdog recommends major changes to exceptional access law TOLA July 27, 2020 Europe * [place-thumb] Mozilla Mornings on addressing online harms through advertising transparency October 19, 2020 * [place-thumb] The EU's Current Approach to QWACs (Qualified Website Authentication Certificates) will Undermine Security on the Open Web October 8, 2020 * [place-thumb] Mozilla files comments with the European Commission on safeguarding democracy in the digital age September 17, 2020 * [place-thumb] Mozilla offers a vision for how the EU Digital Services Act can build a better internet September 8, 2020 * [place-thumb] Mozilla's response to EU Commission Public Consultation on AI June 22, 2020 Data protection * [place-thumb] India's ambitious non personal data report should put privacy first, for both individuals and communities September 12, 2020 * [place-thumb] Bringing California's privacy law to all Firefox users in 2020 December 31, 2019 * [place-thumb] India's new data protection bill: Strong on companies, step backward on government surveillance December 10, 2019 * [place-thumb] Trusted Recursive Resolvers - Protecting Your Privacy with Policy and Technology December 9, 2019 * [place-thumb] Indian government allows expanded private sector use of Aadhaar through ordinance (but still no movement on data protection law) March 5, 2019 Transparency * [place-thumb] Working in the open: Enhancing privacy and security in the DNS June 10, 2021 * [place-thumb] The Van Buren decision is a strong step forward for public interest research online June 4, 2021 * [place-thumb] Mozilla weighs in on political advertising for Commission consultation April 8, 2021 * [place-thumb] Mozilla reacts to publication of draft Digital Services Act and Digital Markets Act December 15, 2020 * [place-thumb] Mozilla reacts to publication of the EU Democracy Action Plan December 3, 2020 User Rights * [place-thumb] Criminal proceedings against Malaysiakini will harm free expression in Malaysia July 8, 2020 * [place-thumb] Bringing California's privacy law to all Firefox users in 2020 December 31, 2019 * [place-thumb] Trusted Recursive Resolvers - Protecting Your Privacy with Policy and Technology December 9, 2019 * [place-thumb] Mozilla Mornings on the future of EU content regulation August 22, 2019 * [place-thumb] Building on the UK white paper: How to better protect internet openness and individuals' rights in the fight against online harms July 2, 2019 Mozilla Mozilla * About * Contact Us * Donate * + Twitter (@mozilla) + Instagram (@mozillagram) Firefox * Download Firefox * Desktop * Mobile * Features * Beta, Nightly, Developer Edition * + Twitter (@firefox) + YouTube (firefoxchannel) * Website Privacy Notice * Cookies * Legal Visit Mozilla Corporation's not-for-profit parent, the Mozilla Foundation. Portions of this content are (c)1998-2021 by individual contributors. Content available under a Creative Commons license.