DNS over QUIC (DoQ) is a protocol for performing DNS resolution over a QUIC connection. QUIC (Quick UDP Internet Connections) is a transport protocol that combines the security of TLS with the performance of UDP (User Datagram Protocol). It is designed to improve the speed and security of internet connections by reducing the number of round trips required to establish a connection and by encrypting the data exchanged between the client and the server.
DoQ is a variant of DNS over HTTPS (DoH) that uses QUIC as the underlying transport protocol. It is designed to improve the privacy and security of DNS queries by encrypting them and making them harder to intercept or tamper with. Like DoH, DoQ is intended to be an alternative to traditional DNS, which uses an unencrypted connection and is vulnerable to interception and tampering.
In general, DoQ is considered to be a secure protocol, as it uses QUIC, which is a transport protocol that combines the security of TLS with the performance of UDP (User Datagram Protocol). QUIC uses encryption and authentication to protect the data exchanged between the client and the server and to prevent attackers from intercepting or tampering with the traffic.
DoQ is still in the experimental phase and is not widely supported by web browsers or DNS resolvers. However, it has the potential to improve the speed and security of DNS queries and to enhance the privacy of users.