Level: Tehnical

Abstract:
Discover the world of encrypted DNS protocols – DoH, DoT, DoQ, and DNSCrypt – and why they matter for safeguarding your online privacy against eavesdroppers and censors.

Session explores the core concepts of DNS encryption, starting with a comparison of popular protocols like DNS over HTTPS (DoH), DNS over TLS (DoT), and DNS over QUIC (DoQ). These methods secure DNS queries from interception, but each has trade-offs in speed, compatibility, and deployment.

After DNS encryption, anonymized DNS will be presented with ODOH and DNSCrypt as two main actors in this area.

Shifting attention to DNSCrypt, the protocol that stands out with its unique blend of authentication, encryption, and short-term key rotation for enhanced anonymity. Learn practical setup tips, real-world use cases, and why it often outperforms others in privacy-focused scenarios.

There will be mention of modns, PoC fork of DNSCrypt aiming to extend anonymization by adding support for multiple relays in dns query chain.

Lastly, explain how encrypted dns can pose a threat in business environments, or generally in the wrong hands or with bad actors.

Bio:
Nikola Garafolic aka nix is a Linux enthusiast and self-hosting advocate who thrives on building homelab projects and exploring emerging tech trends. Comfortable with IPv6 and passionate about creating practical solutions from the ground up.

Posted on Friday, February 27th, 2026 at 10:54 am in talks | rss feed for comments| Responses are currently closed, but you can trackback from your own site.