Online government services are increasingly regarded as critical national infrastructure. Because these services directly influence public trust, any disruption can have significant societal and political consequences. Yet their supporting infrastructures remain vulnerable to outages from natural disasters, geopolitical tensions, and targeted attacks. Central to their operation is the authoritative Domain Name System (DNS) infrastructure, the single source of truth that maps government domain names to service endpoints. While indispensable, this infrastructure also represents a potential and critical point of system failure. In this paper, we introduce a comprehensive assessment framework with purpose-designed mechanisms to systematically evaluate the operational resilience of authoritative DNS infrastructure supporting government services. Complementing prior studies on website hosting, recursive resolution, and DNS record integrity, our work provides a holistic view of authoritative DNS operation. Our first contribution develops a multi-sourced data schema that characterizes a (government) domain's authoritative DNS infrastructure across four hierarchical levels: physical hosting infrastructure, server functionality, name servers, and individual hosting instances. Using data collected from six representative countries, our second contribution identifies resilience attributes at their finest applicable hierarchy across three operational phases: infrastructure placement, service configuration, and DNS record dispatch. Our method assigns numerical scores to each attribute and aggregates them algorithmically to enable consistent and cross-domain comparisons. We apply our method to government domains in the six countries, highlighting their strengths and weaknesses in authoritative DNS resilience and pinpointing operational practices that require improvement.

翻译：在线政府服务日益被视为关键国家基础设施。由于这些服务直接影响公众信任，任何中断都可能引发重大的社会和政治后果。然而，其支撑基础设施仍易受自然灾害、地缘政治紧张局势和针对性攻击导致的故障影响。其运行核心是权威域名系统（DNS）基础设施——将政府域名映射到服务端点的唯一权威信息来源。尽管不可或缺，该基础设施也代表着系统故障的潜在关键点。本文提出一套综合评估框架，并设计专用机制，系统性地评估支撑政府服务的权威DNS基础设施运行韧性。作为对网站托管、递归解析及DNS记录完整性等前期研究的补充，本研究提供了权威DNS运行的整体视角。首先，我们开发了一个多源数据模式，从四个层级表征（政府）域的权威DNS基础设施：物理托管基础设施、服务器功能、名称服务器和单个托管实例。其次，利用从六个代表性国家收集的数据，我们识别了横跨三个运行阶段（基础设施部署、服务配置和DNS记录分发）中最细粒度适用层级的韧性属性。本方法为每个属性分配数值分数，并通过算法聚合，实现跨域一致性比较。我们将方法应用于六个国家的政府域，揭示了其在权威DNS韧性方面的优势与不足，并指出了需要改进的运行实践。