Research On The Realization Technology Of Domain Name System Data Plane Based On Blockchain

The Domain Name System(DNS)is the link that connects Internet applications and resources,and plays an important role in the stable operation of the Internet.This article starts from the perspective of improving the DNS architecture,and focuses on the typical problems of Internet DNS security,and in-depth study of DNS decentralization technology,through the decentralization of the DNS data plane to reduce the loss caused by business competition,and then build a safe and open Network space to promote the stable and sustainable development of the Internet.The research work in this article has been applied in related engineering projects.The main research contents and contributions of this paper are as follows:Analysis and summary of DNS decentralization technology.The centralization of DNS not only has unilateral control risks,but also limits its ability to resist new security threats.This paper conducts a comprehensive and in-depth investigation and analysis of the existing DNS decentralization technology,classifies and summarizes the existing research results according to the technical system,and proposes a method according to the data plane,control plane and management plane.The classification method explains the decentralization of DNS from three different levels,which provides a design reference for the systematic realization of DNS decentralization.Decentralized design of DNS data plane.Innovatively propose a decentralized design plan for the DNS data plane,called Block Zone,to change the traditional DNS recursive resolution process by introducing a new mechanism for domain name data storage and retrieval.Block Zone stores DNS zone files(Zone files)in a distributed file system,and saves the metadata of DNS zone files on the blockchain.Compared with the traditional DNS resolution process,Block Zone not only achieves higher retrieval efficiency,but also ensures the authenticity of the resolution results.Block Zone is implemented on the data plane of DNS,without modifying the DNS protocol,is fully compatible with traditional DNS,and has good progressive deployment capabilities.Decentralized realization of DNS data plane.Designed and proposed a decentralized implementation plan for the DNS data plane,and verified the effectiveness of key implementation technologies,including: IPFS-based domain name file storage technology,blockchain-based domain name query technology,and smart contract-based domain name verification technology.On this basis,a prototype system was designed and implemented with open source projects BIND and Hyperledger Fabric.The blockchain benchmark tool Hyperledger Caliper was used to verify the throughput and delay changes of the system under different conditions,and the performance of the core mechanism was evaluated.