OnionDNS: A Seizure-resistant Top-level Domain
Int. J. Infor. Secur. DOI 10.1007/s10207-017-0391-Z
University of Missouri School of Law Legal Studies Research Paper No. 2017-24
Posted: 27 Oct 2017
Date Written: October 24, 2017
Abstract
The Domain Name System (DNS) provides the critical service of mapping canonical names to IP addresses. Recognizing this, a number of parties have increasingly attempted to perform "domain seizures" on targets by having them delisted from DNS. Such operations often occur without providing due process to the owners of these domains, a practice made potentially worse by recent legislative proposals. We address this problem by creating OnionDNS, an anonymous top-level domain and resolution service for the Internet. Our solution relies on the establishment of a hidden service running DNS within Tor and uses a variety of mechanisms to ensure a high-performance architecture with strong integrity guarantees for resolved records. We then present our anonymous domain registrar and detail the protocol for securely transferring the service to another party. Finally, we also conduct both performance and legal analyses to further demonstrate the robustness of this approach. In so doing, we show that the delisting of domains from DNS can be mitigated in an efficient and secure manner.
Keywords: Tor hidden services, DNS, Proof-of-work, Censorship resistance
Suggested Citation: Suggested Citation