Google Public DNS gets DNS-over-TLS treatment

New mode for to help keep DNS queries private, except from Google.
Written by Chris Duckett, Contributor on
(Image: Vladimir_Timofeev, Getty Images/iStockphoto)

Google Public DNS, the product name for the DNS servers that sit at IP addresses and, is now able to handle the more secure DNS-over-TLS specification. Domain Name System (DNS) is the distributed, phone book-like method for converting domain names into IP addresses.

Traditionally, DNS queries have been vulnerable to sniffing and spoofing from anyone sitting on the wire, but wrapping the queries in Transport Layer Security (TLS) can go some way to changing that.

"Starting today, users can secure queries between their devices and Google Public DNS with DNS-over-TLS, preserving their privacy and integrity," Google said without mentioning the obvious -- since it is on the receiving end of your queries, it will know what domain names you are browsing, as at some point your DNS query needs to be resolved.

Users of Google's Android 9 release are able to switch to make use of DNS-over-TLS already; users need to find the Private DNS setting in Android's network settings, and set the DNS provider to dns.google -- older versions of Android do not have native DNS-over-TLS support.

Must read: What are the fastest DNS providers?

To help solve this, in October fellow Alphabet company Jigsaw released the Intra app to encrypt DNS queries via HTTPS connections.

Google also added that Linux uses could use the stubby resolver for DNS-over-TLS on its resolver.

Google is far from the first DNS resolver to make use of DNS-over-TLS, with Cloudflare's resolver making use of it when launched in April last year.

In November, Cloudflare released Android and iOS apps for mobile users.

Related Coverage

VPN services: The ultimate guide to protecting your data on the internet

Whether you're in the office or on the road, a VPN is still one of the best ways to protect yourself on the big, bad internet.

What are the fastest DNS providers?

Cloudflare is only the latest company to provide free, fast, and secure Domain Name System services. Here's how the major DNS resolvers perform on the internet race track.

How to use Cloudflare's DNS service to speed up and secure your internet

Cloudflare's new Domain Name System promises to both speed up your internet access and protect your privacy.

Alphabet's Intra app encrypts DNS queries to help users bypass online censorship

New Intra app adds DNS-over-HTTPS support for older Android versions. Cloudflare's new DNS attracting 'gigabits per second' of rubbish

Cloudflare is conducting an experiment with APNIC, and it's revealing plenty of dirty hacks.

Top 5: Things you should know about DNS (TechRepublic)

The Domain Name System, or DNS, could be slowing you down or even exposing you to security issues.

Editorial standards