Open AccessDIIA: Blockchain-Based Decentralized Infrastructure for Internet Accountability
Author(s) -
Pengkun Li,
Jinshu Su,
Xiaofeng Wang,
Qianqian Xing
Publication year - 2021
Publication title -
security and communication networks
Language(s) - English
Resource type - Journals
SCImago Journal Rank - 0.446
H-Index - 43
eISSN - 1939-0114
pISSN - 1939-0122
DOI - 10.1155/2021/1974493
Subject(s) - computer science , computer security , public key infrastructure , revocation list , accountability , the internet , certificate authority , trust management (information system) , public key cryptography , cryptography , key (lock) , key management , revocation , computational trust , encryption , world wide web , reputation , political science , law , overhead (engineering) , operating system , social science , sociology
The Internet lacking accountability suffers from IP address spoofing, prefix hijacking, and DDoS attacks. Global PKI-based accountable network involves harmful centralized authority abuse and complex certificate management. The inherently accountable network with self-certifying addresses is incompatible with the current Internet and faces the difficulty of revoking and updating keys. This study presents DIIA, a blockchain-based decentralized infrastructure to provide accountability for the current Internet. Specifically, DIIA designs a public-permissioned blockchain called TIPchain to act as a decentralized trust anchor, allowing cryptographic authentication of IP addresses without any global trusted authority. DIIA also proposes the revocable trustworthy IP address bound to the cryptographic key, which supports automatic key renewal and efficient key revocation and eliminates complexity certificate management. We present several security mechanisms based on DIIA to show how DIIA can help to enhance network layer security. We also implement a prototype system and experiment with real-world data. The results demonstrate the feasibility and suitability of our work in practice.