preprint 2024 ยท arXiv preprint

NinjaDoH: A Censorship-Resistant Moving Target DoH Server Using Hyperscalers and IPNS

Scott Seidenberger, Marc Beret, Raveen Wijewickrama, Murtuza Jadliwala, Anindya Maiti

Project Site Code arXiv PDF DOI

Abstract

NinjaDoH is a censorship-resistant DNS-over-HTTPS (DoH) server that uses hyperscaler infrastructure and IPNS (InterPlanetary Naming System) to create a moving target. By dynamically changing resolvable endpoints, the system makes it significantly harder for censors to block DNS resolution.

Research Question

How can we design DoH infrastructure that remains available in the face of state-level censorship while leveraging existing hyperscaler deployment?

Key Results

  • Moving-target endpoint rotation reduces durability of fixed blocking rules
  • IPNS integration enables decentralized naming and resolver agility
  • Evaluation shows improved resilience relative to static DoH endpoints