coolaj86
commented
1 year ago Use Case: Decentralize and Secure the Master Nodes
Currently the Master Nodes are susceptible to an entire pipeline of "single point of failure"s.
IP-only Addressing: Domino of Vulnerabilities
Most importantly, they rely on the centralized system of IP addresses, which is extremely politically fragile (e.g. AWS).
As part of that reliance, they're also ineligible for DV TLS Certificates, and IP-only certificates can easily be spoofed - the offending controlling organization can simply re-acquire the IP address.
The entire process is a completely centralized black-box - there's no ability to transfer IP addresses between service providers, verify that the IP address is still controlled by the leasee, nor provide redundancy by using an IP address from another provider.
Domain Name Addressing: Highly Censorship Resistant
In contrast, it's very easy to create very durable and secure registrations simply by using multiple domain names owned by different TLD service providers (ex: .com, .dev, .gop) through different registrars (ex: eNom, OpenSRS) with different name service providers (ex: Digital Ocean, DNSimple), but with records all pointing to the same address.
This is exactly the decentralized resiliency that DNS was designed to have by default, but for which very little tooling exists to utilize it.
If we automate away the difficulty of interfacing with the various service providers, we can have unparalleled censorship resistance.
Note: Switching to to domain name based registration will require a trivial code change - simply restoring the default networking behavior by removing the artificial restriction against domain names - and then checking that each resolution in the address resolution field give the same IP address (differences would indicate tampering, or an in-process configuration change).
What
A domain reseller, decentralized through multiple registrars (such as GoDaddy and eNom) that is specifically designed to make censorship-resistant self-hosting effortless.
Automatable, scriptable, and configurable via simple web, CLI, and API tools.
Domains also available for purchase in DASH at a steep discount (for up to 10 years) to spread adoption (similar to what GoDaddy and NameCheap have done).
Why
Self-hosting is a niche that is very inclusive of the Dash community (ex: MNOs), and the self-hosting community is very inclusive of the cryptocurrency community (ex: Umbrel).
The core of the web lies in DNS: the relationship between IP addresses (servers) and Domain Names (URLs).
DNS is already decentralized. It is an asset, an ally in the fight against tyranny and centralized oppression.
If we make it click-button simple to configure Domains and DNS, we democratize the web.
With automation at the DNS level we will bridge the gap between web 2.0, 3.0, or whatever else comes next.
Furthermore, by offering steep discounts on domain purchases to those who buy with Dash, we widen its userbase, increase adoption, and gain recognition as truly tech-forward - separating DASH and its community as Digital Cash.
From web to email, chat, and verification services, DNS is the core technology that we must integrate with in order to extend the products and services all Internet users are already using, as well as make our own services (i.e. MNOs) more accessible and secure.
Use Cases
See below.