Abstract
DNS is an important infrastructure of the Internet, providing domain name resolution services. However, there is a serious centralization problem in terms of DNS architecture and management. To solve the problem of DNS centralization, we propose a blockchain-based decentralized DNS storage and parsing scheme BlockZone. Without changing the existing DNS protocol, BlockZone takes DNS name server as the node in the blockchain network and each node stores all the record information of the whole network. The record in the node ensures consistency by consensus algorithm. We propose an improved PBFT consensus algorithm for DNS, which has the advantages of fast consensus and low traffic. Experiments show that the parsing and authentication efficiency of BlockZone is 37.8% higher than that of DNSSEC, and the improved consensus algorithm is improved by 4 orders of magnitude in efficiency than PoW-based consensus algorithm.
Keywords
Supported by Project of National Defense Science and Technology Innovation Zone (Grant No. 18-H863-01-ZT-005-027-02), National Natural Science Foundation of China (U1636215) and Project of Hunan Provincial Department of Education (Grant No. 14C0095).
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hansen, T., et al.: Domain keys identified mail (DKIM) service overview. RFC 5585 (2009)
Leighton, T.: Improving performance on the internet. Commun. ACM 52(2), 44–51 (2009)
Levine, J.: DNS blacklists and whitelists. IETF RFC 5782 (2010)
Ateniese, G., Mangard, S.: A new approach to DNS security (DNSSEC). In: The 8th ACM Conference on Computer and Communications Security, pp. 86–95 (2001)
Lian, W., Rescorla, E., Shacham, H., et al.: Measuring the practical impact of DNSSEC deployment. In: USENIX Security, pp. 573–588 (2013)
Herzberg, A., Shulman, H.: DNSSEC: security and availability challenges. In: Communications and Network Security, pp. 365–366 (2013)
Events of 2015-11-30, 04 December 2015. Retrieved 18 Dec 2015
Moura, G.C.M., Schmidt, O., Ricardo, H., et al.: Anycast vs. DDoS: evaluating the November 2015 root DNS event (PDF). In: Proceedings of the ACM Internet Measurement Conference (IMC 2016). ACM, Santa Monica, November 2016
Binxing, F.: Discussion on autonomous root domain name system based on national union from “Network Sovereignty”. Inf. Secur. Commun. Priv. 12, 35–38 (2014)
Chung, T., Rijswijk-Deij, R.V., Choffnes, D., et al.: Understanding the role of registrars in DNSSEC deployment. In: Internet Measurement Conference, pp. 369–383 (2017)
Namecoin [EB/OL]. https://Namecoin.info
OneName [EB/OL]. https://onename.com/
Ali, M., Nelson, J., Shea, R., et al.: Blockstack: a global naming and storage system secured by blockchains. IN: 2016 USENIX Annual Technical Conference, pp. 181–194 (2016)
Meng, R., Rice, S.G., Wang, J., Sun, X.: A fusion steganographic algorithm based on faster R-CNN. CMC: Comput. Mater. Continua 55(1), 001–016 (2018)
Cui, J., Zhang, Y., Cai, Z., Liu, A., Li, Y.: Securing display path for security-sensitive applications on mobile devices. CMC: Comput. Mater. Continua 55(1), 017–035 (2018)
Author information
Authors and Affiliations
Corresponding authors
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Switzerland AG
About this paper
Cite this paper
Wang, W., Hu, N., Liu, X. (2019). BlockZone: A Blockchain-Based DNS Storage and Retrieval Scheme. In: Sun, X., Pan, Z., Bertino, E. (eds) Artificial Intelligence and Security. ICAIS 2019. Lecture Notes in Computer Science(), vol 11635. Springer, Cham. https://doi.org/10.1007/978-3-030-24268-8_15
Download citation
DOI: https://doi.org/10.1007/978-3-030-24268-8_15
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-24267-1
Online ISBN: 978-3-030-24268-8
eBook Packages: Computer ScienceComputer Science (R0)