A Trust Based DNS System to Prevent Eclipse Attack on Blockchain Networks


Yildiz A. K., Atmaca A., Solak A. O., Tursun Y. C., Bahtiyar Ş.

15th IEEE International Conference on Security of Information and Networks, SIN 2022, Sousse, Tunisia, 11 - 13 November 2022 identifier

  • Publication Type: Conference Paper / Full Text
  • Doi Number: 10.1109/sin56466.2022.9970533
  • City: Sousse
  • Country: Tunisia
  • Keywords: Blockchain, DNS, Eclipse Attacks, Normalization, Trust
  • Istanbul Technical University Affiliated: Yes

Abstract

The blockchain network is often considered a reliable and secure network. However, some security attacks, such as eclipse attacks, have a significant impact on blockchain networks. In order to perform an eclipse attack, the attacker must be able to control enough IP addresses. This type of attack can be mitigated by blocking incoming connections. Connected machines may only establish outbound connections to machines they trust, such as those on a whitelist that other network peers maintain. However, this technique is not scalable since the solution does not allow nodes with new incoming communications to join the network. In this paper, we propose a scalable and secure trust-based solution against eclipse attacks with a peer-selection strategy that minimizes the probability of eclipse attacks from nodes in the network by developing a trust point. Finally, we experimentally analyze the proposed solution by creating a network simulation environment. The analysis results show that the proposed solution reduces the probability of an eclipse attack and has a success rate of over 97%.