Research on Enterprise DNS Security Scheme Based on Blockchain Technology

Abstract

Almost every activity on the Internet starts with a DNS query, and 80% of the query requests will hit on the local DNS cache server. As an important network infrastructure, the local DNS solves the DNS request query problem of the intranet users, but also faces many serious threats, such as single point of failure, DNS pollution, and vulnerability to DDoS attacks. In this paper, we propose an enterprise-level DNS service scheme based on blockchain technology. A distributed structure is formed by installing the blockchain service (Ethereum) on multiple servers. Multiple block nodes provide DNS resolution service at the same time, which can effectively solve the problem of single point of failure. Each block node has the domain name verification function. When the domain name information is updated, multiple nodes implement the voting verification through smart contract, which can effectively reduce the DNS pollution. In the case of DDoS attack, multiple nodes can effectively decompose the attack traffic through load balancing algorithm. In addition, blockchain nodes can run consensus algorithm, which means that even if a node is attacked, the DNS service can still run normally.