摘要
域名服务器提供域名和IP地址的转换服务,是Internet中最为关键的基础设施之一。目前根域名服务器集中式的管理和组织方式无法避免地对世界上大多数国家的网络造成安全威胁。针对集中式的组织方式存在用户隐私被监控、访问重定向、服务中断等安全问题,论文提出了一种去中心化的网络域名服务系统模型DDNS(Decentralized Domain Name System),在此模型基础上设计了分布式一致性算法。分布式一致性算法用于根域名服务器的去中心化和状态同步,集群内的事务请求通过投票方式决定,该事务通过后会在各节点上提交。
DNSisan essentialcomponent ofthe functionalityofthe Internet, and itprovidesa distributeddirectoryservice totranslate domain names to the numerical IP addresses. The centralized management of the root servers takes an inevitable security risk to the most of the countries connected to the Internet where personal online privacy is being monitored by the root server, and the visitcan be redirected,also the service can be terminated. In this paper, adecentralized domain name system named DDNS (DecentralizedDomain Name System) is proposed, and in this model a consensus algorithm is designed to decentralize the master server, andthe transaction request on the cluster need to be voted by all the nodes instead of updating from the master's resource records. While the proposal is admitted by more than half of the active nodes, the transaction will be accomplished on each of them.
出处
《网络空间安全》
2017年第1期14-18,共5页
Cyberspace Security
基金
国家自然科学基金资助项目(61540020):"基于多维证据的信任评估理论
模型与关键机制研究"
关键词
根域名服务器
域名解析
去中心化
分布式一致性
网络安全
网络主权
rootdnsserver
addressresolution
decentralizedsystem
distributedconsensus
networksecurity
networksovereignty
