Encrypt DNS in IOS 14 Applications
In iOS 14, Apple introduced support for passing the DNS queries over HTTPS (DoH) or TLS (DoT). So why bother encrypting DNS queries when HTTPS is widely in use? Because if someone (ISPs, on-path routers, law enforcement agency, etc.) is eavesdropping on your application’s unencrypted DNS queries, they will be able to map which API / services your application uses and potentially “map” your service.
You can read more about DoH and DoT here
Unencrypted DNS
To better understand how easy it is for someone to eavesdrop on unencrypted DNS queries, let’s run the following sample code: