Search papers, labs, and topics across Lattice.
This study investigates the timing gap between Google Safe Browsing (GSB) query closures and DNS resolution responses, revealing a consistent temporal offset that could pose security risks. Through packet-capture analysis of various datasets, the authors found that in approximately 79% of cases, DNS responses lagged behind GSB-related events, with median delays ranging from 67 to 79 ms and some exceeding 2,400 ms. These findings underscore the potential vulnerabilities introduced by timing inconsistencies in browser navigation, particularly in scenarios involving complex CNAME-domain resolutions.
A staggering 79% of browser navigation instances reveal DNS responses lagging behind safety checks, creating a critical security vulnerability.
Google Safe Browsing (GSB) and DNS resolution operate concurrently during browser navigation, yet their packet-level synchronization remains understudied. This work characterizes the timing gap (\(\Delta_{time}\)) between GSB-related query close events and parallel DNS resolution responses, identifying a consistent temporal offset with potential security relevance. Using packet-capture analysis across general and CNAME-domain datasets, we observe positive timing gaps in approximately 79\% of measurements. In these instances, DNS responses lag behind GSB-related query closures with median delays of 67-79 ms and maximum delays surpassing 2,400 ms. These empirical results highlight a measurable window within the browsing workflow. We suggest that such temporal inconsistencies, particularly in complex CNAME-domain resolutions, may create a security-relevant timing precondition under DNS-manipulation threat models. These results provide a foundation for further research into timing-based risks and mitigations in browser safety mechanisms.