research-article

The Internet Blockchain: A Distributed, Tamper-Resistant Transaction Framework for the Internet

Authors:

T. V. LakshmanAuthors Info & Claims

HotNets '16: Proceedings of the 15th ACM Workshop on Hot Topics in Networks

Pages 204 - 210

https://doi.org/10.1145/3005745.3005771

Published: 09 November 2016 Publication History

Abstract

Existing security mechanisms for managing the Internet infrastructural resources like IP addresses, AS numbers, BGP advertisements and DNS mappings rely on a Public Key Infrastructure (PKI) that can be potentially compromised by state actors and Advanced Persistent Threats (APTs). Ideally the Internet infrastructure needs a distributed and tamper-resistant resource management framework which cannot be subverted by any single entity. A secure, distributed ledger enables such a mechanism and the blockchain is the best known example of distributed ledgers.

In this paper, we propose the use of a blockchain based mechanism to secure the Internet BGP and DNS infrastructure. While the blockchain has scaling issues to be overcome, the key advantages of such an approach include the elimination of any PKI-like root of trust, a verifiable and distributed transaction history log, multi-signature based authorizations for enhanced security, easy extensibility and scriptable programmability to secure new types of Internet resources and potential for a built in cryptocurrency. A tamper resistant DNS infrastructure also ensures that it is not possible for the application level PKI to spoof HTTPS traffic.

References

[1]

7 Transactions Per Second? Really? http://hashingit.com/analysis/33-7-transactions-per-second.

[2]

BGPSec Protocol Specification. https://tools.ietf.org/html/draft-ietf-sidr-bgpsec-protocol-17.

[3]

Bitcoin Mining Pools. http://www.nytimes.com/2016/07/03/business/dealbook/bitcoin-china.html?_r=0.

[4]

Bitcoin Scalability. https://en.bitcoin.it/wiki/Scalability.

[5]

DNS Security Extensions. https://en.wikipedia.org/wiki/Domain_Name_System_Security_Extensions.

[6]

Hashgraph. http://www.swirlds.com/wp-content/uploads/2016/06/2016-05-31-Overview-of-Swirlds-Hashgraph-1.pdf.

[7]

IBM ADEPT. http://www-935.ibm.com/services/multimedia/GBE03662USEN.pdf.

[8]

IETF DANE WG. https://datatracker.ietf.org/wg/dane/charter/.

[9]

NameCoin. https://namecoin.info.

[10]

Nuage Networks. http://www.nuagenetworks.net.

[11]

Payment Channels. https://en.bitcoin.it/wiki/Payment_channels.

[12]

Secure BGP Deployment Final Report. http://transition.fcc.gov/bureaus/pshs/advisory/csric3/CSRIC_III_WG6_Report_March_202013.pdf.

[13]

The BGP Instability Report. http://bgpupdates.potaroo.net/instability/bgpupd.html.

[14]

The Ethereum Project. www.ethereum.org.

[15]

The Hyperledger Project. https://en.wikipedia.org/wiki/Hyperledger.

[16]

University of Oregon Route Views Project. www.routeviews.org.

[17]

Adam Back et. al. Enabling Blockchain Innovations with Pegged Sidechains. https://blockstream.com/sidechains.pdf.

[18]

M. Ali, J. Nelson, R. Shea, and M. J. Freedman. Blockstack: A Global Naming and Storage System Secured by Blockchains. In 2016 USENIX Annual Technical Conference (USENIX ATC 16), pages 181–194, Denver, CO, June 2016. USENIX Association.

[19]

Arvind Narayanan et.al. Bitcoin and Cryptocurrency Technologies. https://d28rh4a8wq0iu5.cloudfront.net/bitcointech/readings/princeton_bitcoin_book.pdf?a=1.

Digital Library

[20]

J. Bailey, D. Pemberton, A. Linton, C. Pelsser, and R. Bush. Enforcing RPKI-based Routing Policy on the Data Plane at an Internet Exchange. In Proceedings of the Third Workshop on Hot Topics in Software Defined Networking, HotSDN '14.

Digital Library

[21]

M. Castro and B. Liskov. Practical Byzantine Fault Tolerance. OSDI '99, 1999.

Digital Library

[22]

C. Decker, J. Seidel, and R. Wattenhofer. Bitcoin Meets Strong Consistency. In Proceedings of the 17th International Conference on Distributed Computing and Networking, pages 13:1–13:10, 2016.

Digital Library

[23]

Eleftherios Kokoris Kogias et. al. Enhancing Bitcoin Security and Performance with Strong Consistency via Collective Signing. In 25th USENIX Security Symposium (USENIX Security 16), pages 279–296, 2016.

[24]

A. Elmokashfi and A. Dhamdhere. Revisiting BGP Churn Growth. ACM SIGCOMM Computer Communication Review, 44(1), 2013.

Digital Library

[25]

I. Eyal, A. E. Gencer, E. G. Sirer, and R. Van Renesse. Bitcoin-NG: A scalable blockchain protocol. In 13th USENIX Symposium on Networked Systems Design and Implementation (NSDI 16), pages 45–59, 2016.

Digital Library

[26]

S. Goldberg. Why Is It Taking So Long To Secure Internet Routing? Communications of the ACM, 57(10):56–63, 2014.

Digital Library

[27]

A. Gupta, N. Feamster, and L. Vanbever. Authorizing Network Control at Software Defined Internet Exchange Points. 2016.

[28]

D. Gupta, A. Segal, A. Panda, G. Segev, M. Schapira, J. Feigenbaum, J. Rexford, and S. Shenker. A New Approach to Interdomain Routing Based on Secure Multi-Party Computation. Hotnets'12.

Digital Library

[29]

Gupta, Arpit et. al. SDX: a software defined internet exchange. ACM SIGCOMM Computer Communication Review, 44(4):551–562, 2015.

Digital Library

[30]

A. Haeberlen. NetReview: Detecting When Interdomain Routing Goes Wrong. NSDI, 2009.

Digital Library

[31]

E. Heilman, D. Cooper, L. Reyzin, and S. Goldberg. From the consent of the routed: Improving the transparency of the rpki. ACM SIGCOMM Computer Communication Review, 44(4):51–62, 2015.

Digital Library

[32]

L. Lamport. The Part-Time Parliament. ACM Transactions on Computer Systems, 16(2), 1998.

Digital Library

[33]

M. Lepinski et. al. A Profile for Route Origin Authorizations (ROAs). RFC 6482 (Proposed Standard), 2012.

[34]

M. Lepinski et. al. An Infrastructure to Support Secure Internet Routing. RFC 6480 (Informational), 2012.

[35]

S. Nakamoto. Bitcoin: A Peer-to-Peer Electronic Cash System. https://bitcoin.org/bitcoin.pdf.

Cited By

Rodday NCunha ÍBush RKatz-Bassett ERodosek GSchmidt TWählisch M(2024)The Resource Public Key Infrastructure (RPKI): A Survey on Measurements and Future ProspectsIEEE Transactions on Network and Service Management10.1109/TNSM.2023.332745521:2(2353-2373)Online publication date: Apr-2024
https://doi.org/10.1109/TNSM.2023.3327455
Kumar GDharmajee Rao DAvala RKumar SMahesh B(2024)Analysis on the Comprehensive Evaluation of a Trustworthy Block Chain-Based T 2 DNS Prototype2024 1st International Conference on Sustainable Computing and Integrated Communication in Changing Landscape of AI (ICSCAI)10.1109/ICSCAI61790.2024.10866111(1-5)Online publication date: 4-Jul-2024
https://doi.org/10.1109/ICSCAI61790.2024.10866111
Veeraiah DBasha SBeebi Fathima SSatwika Y(2024)Enabling DNS Security through Permissioned Blockchain2024 International Conference on Inventive Computation Technologies (ICICT)10.1109/ICICT60155.2024.10544517(1623-1631)Online publication date: 24-Apr-2024
https://doi.org/10.1109/ICICT60155.2024.10544517
Show More Cited By

Recommendations

Securing the Internet's Routing Infrastructure

Experts have been concerned about the security of the Internet's routing infrastructure, which was designed many years ago. Now, organizations are developing proposals to secure the infrastructure.
Convergence of Blockchain Enabled Internet of Things (IoT) Framework: A Survey
Ubiquitous Networking
Abstract
Recent research and experiments in the field of Internet of Things (IoT) security have found that these devices are vulnerable to various attacks, ranging from cyber-attacks to physical attacks on devices. Internet of Things (IoTs) have certain ...
A blockchain-based certificate revocation management and status verification system
Abstract
Revocation management is one of the main tasks of the Public Key Infrastructure (PKI). It is also critical to the security of any PKI. As a result of the increase in the number and sizes of networks as well as the adoption of novel ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

HotNets '16: Proceedings of the 15th ACM Workshop on Hot Topics in Networks

November 2016

217 pages

ISBN:9781450346610

DOI:10.1145/3005745

General Chair:
Ellen Zegura
Georgia Tech
,
Program Chairs:
Bryan Ford
EPFL
,
Alex C. Snoeren
UC San Diego

Copyright © 2016 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Sponsors

SIGCOMM: ACM Special Interest Group on Data Communication

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 09 November 2016

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

HotNets-XV

Sponsor:

SIGCOMM

HotNets-XV: The 15th ACM Workshop on Hot Topics in Networks

November 9 - 10, 2016

GA, Atlanta, USA

Acceptance Rates

HotNets '16 Paper Acceptance Rate 30 of 108 submissions, 28%;

Overall Acceptance Rate 110 of 460 submissions, 24%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

84
Total Citations
View Citations
3,983
Total Downloads

Downloads (Last 12 months)43
Downloads (Last 6 weeks)6

Reflects downloads up to 02 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Rodday NCunha ÍBush RKatz-Bassett ERodosek GSchmidt TWählisch M(2024)The Resource Public Key Infrastructure (RPKI): A Survey on Measurements and Future ProspectsIEEE Transactions on Network and Service Management10.1109/TNSM.2023.332745521:2(2353-2373)Online publication date: Apr-2024
https://doi.org/10.1109/TNSM.2023.3327455
Kumar GDharmajee Rao DAvala RKumar SMahesh B(2024)Analysis on the Comprehensive Evaluation of a Trustworthy Block Chain-Based T 2 DNS Prototype2024 1st International Conference on Sustainable Computing and Integrated Communication in Changing Landscape of AI (ICSCAI)10.1109/ICSCAI61790.2024.10866111(1-5)Online publication date: 4-Jul-2024
https://doi.org/10.1109/ICSCAI61790.2024.10866111
Veeraiah DBasha SBeebi Fathima SSatwika Y(2024)Enabling DNS Security through Permissioned Blockchain2024 International Conference on Inventive Computation Technologies (ICICT)10.1109/ICICT60155.2024.10544517(1623-1631)Online publication date: 24-Apr-2024
https://doi.org/10.1109/ICICT60155.2024.10544517
Bhattacharya TPeddi APonaganti SVeeramalla S(2024)A survey on various security protocols of edge computingThe Journal of Supercomputing10.1007/s11227-024-06678-681:1Online publication date: 18-Dec-2024
https://doi.org/10.1007/s11227-024-06678-6
Zha CXu ZXing JYin H(2024)Loft: An Architecture for Lifetime Management of Privacy Data in Service CooperationUbiquitous Security10.1007/978-981-97-1274-8_17(255-273)Online publication date: 13-Mar-2024
https://doi.org/10.1007/978-981-97-1274-8_17
Alrowaily MAlghamdi MAlkhazi IHassanat AArbab MLiu C(2023)Modeling and Analysis of Proof-Based Strategies for Distributed Consensus in Blockchain-Based Peer-to-Peer NetworksSustainability10.3390/su1502147815:2(1478)Online publication date: 12-Jan-2023
https://doi.org/10.3390/su15021478
XU SGUO XXU K(2023)Verifiable Bloom filter (VBF): accelerate the query and proof of nonexistent data in a blockchainSCIENTIA SINICA Informationis10.1360/SSI-2023-0048Online publication date: 12-Dec-2023
https://doi.org/10.1360/SSI-2023-0048
Theoder JMetharath BAlouneh S(2023)Securing Domain Name Systems with Blockchain2023 Fourth International Conference on Intelligent Data Science Technologies and Applications (IDSTA)10.1109/IDSTA58916.2023.10317833(48-53)Online publication date: 24-Oct-2023
https://doi.org/10.1109/IDSTA58916.2023.10317833
Liu YXie ZXiao NChen ZOu Y(2023)FlyDB: Query Optimization of Blockchain System Based on Hybrid Storage Architecture2023 4th International Seminar on Artificial Intelligence, Networking and Information Technology (AINIT)10.1109/AINIT59027.2023.10212824(233-237)Online publication date: 16-Jun-2023
https://doi.org/10.1109/AINIT59027.2023.10212824
Rao PJangirala SPedada SDas APark Y(2023)Blockchain Integration for IoT-Enabled V2X Communications: A Comprehensive Survey, Security Issues and ChallengesIEEE Access10.1109/ACCESS.2023.328184411(54476-54494)Online publication date: 2023
https://doi.org/10.1109/ACCESS.2023.3281844
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten