Jun 26, 2020 14:20:00

Xfinity, a Comcast affiliate, participated for the first time as an ISP in Mozilla's privacy measures

Mozilla is promoting the use of DNS encryption for privacy protection and is promoting the 'Trusted Recursive Resolvers (TRR)' program. For the first time as an Internet service provider (IPS), it was announced that 'Xfinity', a subsidiary of the major telecommunications company Comcast, joined the program. Comcast has a history of lobbying against DNS encryption, and Xfinity's participation is likely to be significant.

Comcast's Xfinity Internet Service Joins Firefox's Trusted Recursive Resolver Program-The Mozilla Blog

https://blog.mozilla.org/blog/2020/06/25/comcasts-xfinity-internet-service-joins-firefoxs-trusted-recursive-resolver-program/

Xfinity Internet Joins Firefox's Recursive Resolver Program, Committing to Customer Privacy Protection

https://corporate.comcast.com/press/releases/comcast-xfinity-internet-firefox-trusted-recursive-resolver-program-customer-privacy

Comcast, Mozilla strike privacy deal to encrypt DNS lookups in Firefox | Ars Technica
https://arstechnica.com/tech-policy/2020/06/comcast-mozilla-strike-privacy-deal-to-encrypt-dns-lookups-in-firefox/

The fact that the inquiry and response to the DNS server that searches the IP address from the domain name when connecting to the Internet is not encrypted is a security and privacy problem, and there is a movement to try to encrypt it around 2018 It started from.

Movement to encrypt communication with DNS so that ISP can not read privacy-related information and personal information-GIGAZINE

In 2017, Mozilla has begun to develop DoH (DNS over HTTPS), which encrypts DNS connections by browsers, ahead of this trend. In 2018, we were able to test it, announced the official implementation in September 2019, and decided to enable the feature by default in 2020.

Finally announced that Firefox will enable ``DNS over HTTPS'' which encrypts communication with DNS by default-GIGAZINE

On the other hand, based on the idea that DNS encryption by DoH is only half of the problem, and the rest is on the side of the DNS provider that can abuse DNS data, Mozilla is ``data restriction'' that stipulates that the DNS provider holds confidential information , 'Trusted Recursive Resolvers' program that requires 'transparency' that promises a clear policy, and 'blocking and correction' that prevents providers from censoring. Participating in this program are NextDNS and Cloudflare, who agreed with Mozilla's attitude.

Firefox announces partnership with NextDNS, a secure and customizable DNS-GIGAZINE

On the other hand, ISPs are concerned about the movement of DNS encryption, and it is reported that Comcast, which is a major company, was developing a lobbying activity that interferes with Google's DoH promotion plan.

A major ISP is blocking lobbying activities of Google to encrypt DNS communication-GIGAZINE

'We look forward to this announcement set a precedent for further collaboration between browsers and ISPs,' said Eric Rescorla, CTO of Mozilla.