Encrypt DNS in iOS 14 applications

iOS 14 introduces support for both DNS over HTTPS and DNS over TLS standards. This article explains the benefits of using these standards and how to utilize them through NSURLSession.

Stavros Schizas

3 minute read

In iOS 14, Apple introduced support for passing the DNS queries over HTTPS (DoH) or TLS (DoT). So why bother encrypting DNS queries when HTTPS is widely in use? Because if someone (ISPs, on-path routers, law enforcement agency, etc.) is eavesdropping on your application’s unencrypted DNS queries, they will be able to map which API / services your application uses and potentially “map” your service.