Η Apple and CloudFlare jointly developed one new internet protocol (Internet protocol) that targets in protecting their privacy users, preventing Internet Service Providers (ISPs) from seeing the sites they visit.
At present, when the users put an address in their browser, this address is passed to a Domain Name Server (DNS) that searches for the domain name to convert it to the IP address required to connect to it…
By default, this DNS is managed by your ISP. This means that The ISP knows who you are and which sites you visit. The worst thing is that some ISPs sell these data to advertisers. Some DNS queries are encrypted, but the company running the DNS service still sees the data.
"By name Oblivious DNS-over-HTTPS or ODoH, the new protocol makes it much more difficult for ISPs to know the sites you visit […]
How does it work: ODoH adds one level of encryption around the DNS query and passes it through a proxy server, which acts as an intermediary between them user and the site he wants to visit. "Because the DNS query is encrypted, the proxy server cannot see what is inside, but acts as a shield so that the DNS resolver cannot see who sent the query."
"What ODoH has to do is to separate the information about who does the query and what it includes / what the query isSaid Nick Sullivan, chief researcher at Cloudflare.
In other words, ODoH ensures that only the proxy knows the user ID and that the DNS resolver knows only website requested. Sullivan said that the users they will not notice significant changes in browsing speed or page load times.
Note that ODoH is effective if two different organizations are running the proxy server and the DNS service. There are not many yet, although Cloudflare works with some through DNS 18.104.22.168.
While Apple and Cloudflare have done the basic work, for now it is just a suggested protocol. To apply, you must approved by the Internet Engineering Task Force, the body overseeing the approval of new protocols.
What you can do right now to prevent ISPs from seeing the sites you visit is to use a DNS not run by your ISP or use a trusted VPN. (eg Cloudflare 22.214.171.124 and 126.96.36.199 backup or Google's 188.8.131.52 and 184.108.40.206 backup).
For iOS devices:
Go to Settings> Wi-Fi, then tap the blue "i" icon next to the Wi-Fi network.
Scroll down to configure DNS, select "Manual" and then click "Add Server" to add the ones you want.
Go to > System Preferences> Network. Then click either WiFi, or an Ethernet adapter. Click the Advanced button and then the DNS tab. Press the "+" symbol to add the servers you want to use and delete the ones you do not want.