Successfully reported this slideshow.

CensorMeOrNot - P2P System of DNS Caches - DefCamp 2012

0

Share

1 of 24
1 of 24

More Related Content

Related Audiobooks

Free with a 14 day trial from Scribd

See all

CensorMeOrNot - P2P System of DNS Caches - DefCamp 2012

  1. 1. Teodor Pripoae P2P DNS Systems
  2. 2. What means DNS ? Domain name system
  3. 3. What means DNS ? Domain name system Hierachical distributed naming system
  4. 4. What means DNS ? Domain name system Hierachical distributed naming system Controlled by ICANN
  5. 5. Why changing DNS ? Controlled by a single entity
  6. 6. Why changing DNS ? Controlled by a single entity Very easy to take down a domain by American Government or Hollywood Media Corporations with similar laws to ACTA or SOPA
  7. 7. Looks familiar ?
  8. 8. Alerternative ?
  9. 9. P2P DNS System
  10. 10. Features What should feature a distributed DNS system ?
  11. 11. It must not have any single entity that controls the others Conclusion: it must be P2P with not central node It must be open source
  12. 12. Implementations P2P-DNS: https://github.com/Mononofu/P2P-DNS Namecoin: http://dot-bit.org/Namecoin Censormenot: https://github.com/teodor-pripoae/censormenot
  13. 13. P2P-DNS Records authenticated by a public/private key system All nodes know all othe nodes and the cache all know domains
  14. 14. Attacks Atack 1: An attacker can only poison the cache of a single node Atack 2: An attacker can flood the network with fake domains
  15. 15. Defense methods For attack 1: opinion of the majority is correct and a web trust (opinions of nodes are weighted by your trust to them. For attack 2: similar tools used for email spam prevention systems
  16. 16. Disadvantages Storing all key pairs Everyone can register any domain now even those which already exist in the real dns system
  17. 17. Namecoin Based on bitcoin system .bit TLD Similar private/public keys encryption Buy domains with namecoins which can be converted from bitcoins
  18. 18. Censormenot Why is it different ?
  19. 19. Not a full dns system, but a cache one
  20. 20. Not a full dns system, but a cache one Add a domain lookup only when you need it.
  21. 21. Not a full dns system, but a cache one Add a domain lookup only when you need it. Multiple plausible domains based on a trust value which can be voted
  22. 22. How it looks / works ?
  23. 23. Resources https://github.com/namecoin/namecoin https://github.com/Mononofu/P2P-DNS https://github.com/teodor-pripoae/censorm http://www.youtube.com/watch?v=YNZDhPIdah
  24. 24. Contributors Dan Serban: https://github.com/dserban Alexandru Tache https://github.com/hadesgames

×