Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Blockstack Talk at Princeton CITP

Muneeb Ali
November 10, 2016

Blockstack Talk at Princeton CITP

Muneeb Ali gave a talk on decentralized DNS using blockchains at Princeton University. The talk was hosted by Princeton's Center for IT Policy, which is focused on the interaction of digital technologies with society and is also a powerful voice for Internet security and privacy.

Muneeb Ali

November 10, 2016
Tweet

More Decks by Muneeb Ali

Other Decks in Technology

Transcript

  1. Step 1: How do I talk to facebook.com? Step 2:

    Is this the correct facebook.com? — DNS gives route to facebook.com — PKI verifies authenticity of facebook.com
  2. Step 3: How do I login to facebook.com? — Facebook

    does account management — Facebook gives usernames/passwords
  3. Problems with DNS + PKI: — Internet censorship — Central

    points of trust and failure — Ease of use and deployment
  4. Problems with DNS + PKI: — Internet censorship — Central

    points of trust and failure — Ease of use and deployment Goals for a decentralized DNS + PKI: — Extremely hard to censor — No central points of trust or failure — Low cost, keypair ownership by default
  5. How Blockchains Work: — It’s a file! — Append-only global

    log — Every node on the network has a consistent copy — Writes are slow, reads are fast Blockchain
  6. Production system on Namecoin: — Used u/ namespace — Live

    between March 2014 and August 2015 — 33,000 registrations — Over 200,000 transactions
  7. Lessons from Namecoin: — Storage limitations (blockchain bloat) — Introducing

    new features (hard fork) — Failure of merged-mining — Security / throughput of blockchain — Other engineering challenges
  8. General Challenges with Blockchains: — Storage limitations (blockchain bloat) —

    Introducing new features (hard fork) — Introducing new features (hard fork) — Slow writes — Endless ledger problem
  9. name_op, hash name_op, hash name_op, hash name_op, hash name_op, hash

    Cryptocurrency Blockchain Virtual Blockchain DHT (routing info) Storage System A (data) Storage System B (data) lookup route lookup data lookup data Layer-1 Layer-2 Layer-3 Layer-4 Data Routing
  10. Blockchain name_op, hash name_op, hash name_op, hash name_op, hash name_op,

    hash Bitcoin Blockchain Virtual Blockchain Control Plane Data Plane Storage Drivers S3 Dropbox Linux Unlimited Data Storage:
  11. Fast Bootstrapping: (1) Records are organized into a Merkle tree

    (2) whose root is fed into the consensus hash, (3) along with a geometric series of prior consensus hashes
  12. General Challenges with Blockchains: — Storage limitations (blockchain bloat) —>

    Unlimited data — Introducing new features (hard fork) — Introducing new features (hard fork) —> Virtualchain — Slow writes —> Get updates off blockchain path — Endless ledger problem —> Fast bootstrapping Goals for a decentralized DNS + PKI: — Extremely hard to censor —> state level actor — No central points of trust or failure —> check — Low cost, keypair ownership by default —> check
  13. Blockstack CLI Blockstack gives you fast, secure, and easy-to-use DNS,

    PKI, identity management, and custom namespaces on the blockchain
  14. In the pipeline: — Securing DHTs with Blockstack — Unbound

    (DNS server) integration — Bootstrapping trust for cloud infrastructure (OpenCloud) — Identity and authentication services (Blockstack Auth) — Stateless servers (blogging, email, etc)