www.ischool.berkeley.edu
Decentralized Domain Name System (DDNS)
Excerpt
The modern internet's Domain Name System (DNS) represents a critical infrastructure vulnerability that undermines both security and freedom of information. Two primary categories of threats have emerged as systemic challenges: **DNS Security Vulnerabilities:** The centralized architecture of traditional DNS systems creates attractive targets for sophisticated attacks. Recent evidence includes the APT Group StormBamboo attacks, which compromised ISP-level DNS infrastructure to redirect legitimate traffic to malicious endpoints [1]. These poisoning attacks exploit the inherent trust relationships in hierarchical DNS resolution, demonstrating how centralized control points become systemic weaknesses [33,34]. ā¦ **Ethereum Name Service (ENS):** Utilizes Ethereum's smart contract infrastructure for .eth domain management [3]. While innovative, ENS faces scalability constraints due to Ethereum's throughput limitations (Max Theor. TPS 119.1 tx/s) and high transaction costs (gas fees often exceeding $50 per operation). Additionally, ENS domains are not compatible with traditional DNS infrastructure, limiting their utility [47].
Related Pain Points
DNS Spoofing and Cache Poisoning Attacks
9Attackers intercept and corrupt DNS responses, inserting malicious data into resolver caches that redirect users to fraudulent sites. This causes data theft, malware infections, and security breaches without user knowledge.
Ethereum Name Service Scalability and Cost Constraints
7ENS smart contract-based domain management is limited by Ethereum's throughput (ā119 TPS) and prohibitively high transaction costs (>$50 per operation), while ENS domains lack compatibility with traditional DNS infrastructure, limiting practical utility.