On Performance Impact of DoH and DoT in Africa: Why a User’s DNS choice matters

Mbewe, Enock and Chavula, Josiah (2020) On Performance Impact of DoH and DoT in Africa: Why a User’s DNS choice matters, Proceedings of e-Infrastructure and e-Services for Developing Countries (AFRICOMM), 3-4 December, Mauritious.

[thumbnail of On_QoE_Impact_of_DoH_and_DoT_in_Africa__Why_a_User_s_DNS_choice_matters.pdf] Text
On_QoE_Impact_of_DoH_and_DoT_in_Africa__Why_a_User_s_DNS_choice_matters.pdf

Download (1MB)

Abstract

Internet security and Quality of Experience (QoE) are two antagonistic concepts that the research community has been attempting to reconcile. Internet security has of late received attention due to users' online privacy and security concerns. One example is the introduction of encrypted Domain Name System (DNS) protocols. These protocols, combined with suboptimal routing paths and offshore hosting, have the potential to negatively impact the quality of web browsing experience for users in Africa. This is particularly the case in edge access networks that are far away from essential infrastructures such as DNS and content servers. In this paper, we analyse the QoE impact of using open public DoH and DoT resolvers when resolving websites that are hosted in Africa versus those hosted offshore. The study further compares the performance of DoT and DoH under different network conditions (mobile, community network, Eduroam and Campus wired network). Our results show that high latency and circuitous DNS resolution paths amplify the performance impact of secure DNS protocols on DNS resolution time and page load time. The study further shows that users' DNS resolver preferences hugely determine the level of QoE. This study proposes wider adoption of Transport Layer Security version 1.3 (TLSv1.3) to leverage its latency-reduction features such as false start and Zero or One Round Trip Time (0/1-RTT). The study further proposes the localisation of content and secure DNS infrastructure. This, coupled with peering and cache sharing recommended by other works, will further minimise the impact of secure DNS protocols on Quality of Experience.

Item Type: Conference paper
Uncontrolled Keywords: Networks Network performance Internet security DNS privacy QoE
Subjects: Networks
Networks > Network performance evaluation
Networks > Network performance evaluation > Network performance analysis
Networks > Network performance evaluation > Network measurement
Date Deposited: 21 Dec 2020 10:47
Last Modified: 21 Dec 2020 10:47
URI: http://pubs.cs.uct.ac.za/id/eprint/1386

Actions (login required)

View Item View Item