Volume 18, No. 6, 2021

Distributed Domain Name System Security Solution


Mukesh Kumar Bansal , M. Sethumadhavan , Venkataraman Sarma , M. K. Gupta

Abstract

In view of the vulnerability of Domain Name System DNS) to multiple type attacks posing security threats, a disruptive protocol to ensure DNS security is proposed in this paper. The use of root server by DNS system which is owned by agencies other than user, there is ample chance of cyber threats viz. cache-poisoning, denial of service and other types of inceptions. The available solutions for overcoming such security threats are limited by its’ serviceability. The present paper reviews the concerns for the cyber threat of DNS and analyses the criticalities involved in existing solutions towards DNS security. Introducing the concept of block chain technology, a proposition for a Block chain-based solution named ‘DNS-B Chain’ as an intermediate solution, which may bring in a philosophical change in DNS security solutions. The contemplated development uses Hyperledger Fabric where DNS client is created using Java and ledger entries are stored in CouchDB to maintain DNS Cache; querying is accomplished by the use of Hyperledger APIs. Thus, secure and immutable solutions It is configured to solve issues like DNS Cache poisoning or corrupting DNS data and censorship / restrictions on DNS servers. Finally, discussion is made on the future improvements of the technology, with the advocacy of how block chains may become a vital resource in trusted computing and security with inbuilt DNS Security.


Pages: 1208-1220

Keywords: DNS, DNSSEC, DNSCURVE, Blockchain, Hyperledger)

Full Text