Very good paper about an analysis of what is actually leaked when Joe User is under surveillance from a passive monitor:
http://arstechnica.com/security/2014/06/what-the-nsa-or-anyone-can-learn-about-you-from-internet-traffic/ As the "victim" said, "If you have even the foggiest idea of how technology works and you think about what you are actually doing online, you have probably realized some of this could happen to you. But going through it myself, it was still kind of shocking in the detail.” Technically, you will probably learn nothing from it. But I was surprised by the number of leaks even in encrypted protocols (Google using the same cookie as a strong identifier on secure and non-secure connections, Skype using unencrypted connections for some activity). It is hard to plug all the leaks! DNS is not mentioned, although it would have been a great example of unencrypted information leak. Either the Ars reporter was not aware of its potential, ot he simply got enough data without ressorting on DNS. _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
