Mozilla is claiming, with a lot of justification, that ISPs lied when lobbying against this technology:
Mozilla is urging Congress to reject the broadband industry’s lobbying campaign against encrypted DNS in Firefox and Chrome.
The Internet providers’ fight against this privacy feature raises questions about how they use broadband customers’ Web-browsing data, Mozilla wrote in a letter sent today to the chairs and ranking members of three House of Representatives committees. Mozilla also said that Internet providers have been giving inaccurate information to lawmakers and urged Congress to “publicly probe current ISP data collection and use policies.”
DNS over HTTPS helps keep eavesdroppers from seeing what DNS lookups your browser is making. This can make it more difficult for ISPs or other third parties to monitor what websites you visit.
“Unsurprisingly, our work on DoH [DNS over HTTPS] has prompted a campaign to forestall these privacy and security protections, as demonstrated by the recent letter to Congress from major telecommunications associations. That letter contained a number of factual inaccuracies,” Mozilla Senior Director of Trust and Security Marshall Erwin wrote.
This part of Erwin’s letter referred to an Ars article in which we examined the ISPs’ claims, which center largely around Google’s plans for Chrome. The broadband industry claimed that Google plans to automatically switch Chrome users to its own DNS service, but that’s not what Google says it is doing. Google’s publicly announced plan is to “check if the user’s current DNS provider is among a list of DoH-compatible providers, and upgrade to the equivalent DoH service from the same provider.” If the user-selected DNS service is not on that list, Chrome would make no changes for that user.
………
In addition to the broadband-industry letter to Congress, Comcast has been giving members of Congress a lobbying presentation that claims the encrypted-DNS plan would “centraliz[e] a majority of worldwide DNS data with Google” and “give one provider control of Internet traffic routing and vast amounts of new data about consumers and competitors.” Comcast and other ISPs are urging Congress to intervene.
But a number of the arguments ISPs made to lawmakers are “premised on a plan that doesn’t exist,” Erwin told Ars last week, referring to the ISPs’ claims about Google.
………
Mozilla’s letter to Congress said the ISP lobbying against encrypted DNS amounts to telecom associations “explicitly arguing that ISPs need to be in a position to collect and monetize users’ data. This is inconsistent with arguments made just two years earlier regarding whether privacy rules were needed to govern ISP data use.”
………
Web users are tracked by Google, Facebook, and other advertising companies, of course. ISPs, though, have “privileged access” to users’ browsing histories because they act as the gateway to the Internet, Erwin said to Ars.
There is already “remarkably sophisticated micro-targeting across the Web,” and “we don’t want to see that business model duplicated in the middle of the network,” he said. “We think it’s just a mistake to use DNS for those purposes.”
………
Mozilla has established specific policy requirements that DNS providers have to meet to earn a spot in Firefox’s encrypted-DNS program. For example, DNS resolvers must delete data that could identify users within 24 hours and only use that data “for the purpose of operating the service.” Providers also “must not retain, sell, or transfer to any third party (except as may be required by law) any personal information, IP addresses or other user identifiers, or user query patterns from the DNS queries sent from the Firefox browser.”
Do you really trust COMCAST to protect your privacy when their profits depend on NOT protecting your privacy?
I know that I don’t.