Hi ALTOers, Hello Ayoub Just joined the 5th ALTO interim yesterday, regarding Ayoub’s deck about adding trust to ALTO, I may have a few ideas and comments open for discuss.
l Comments 1: Regarding the Cost Map and trustworthiness metrics, I think it could be a direction where we abstract the security policy into security budget, and abstract device trustworthiness into security cost. A trusted router/path costs near-zero security cost while less trusted routers/paths could use up the security budget, which represent the physical significance of accumulating too much security risk this topology could take. l Comments 2: Regarding how to use the trust inputs received from the ALTO server and how to share trusted output with ALTO client, I think it could also be a direction where we have privacy-preserving computation techniques run on edge servers. A cryptographically accelerated edge server could 1. help end user device receive trust information from ALTO server in order to compute and optimize network performance in a cryptographically secure way, 2. help offload heavy cryptographic computation tasks from end devices to edge servers, 3. prevent direct user exposure of plain-text, privacy-sensitive information (basically a powerful proxy). Personally, I believe privacy-preserving cryptographic computing techniques, such as Zero-Knowledge Proof, Fully Homomorphic Encryption and Federated Learning is too powerful to avoid talking about. If anyone is interested I can prepare an insight analysis and/or a new mailing list. l Comments 3: Since routing security is important I think we need some mechanisms not only to assess the trustworthiness of the routing path, but also to ensure the actual using of this trusted routing path. For example, how to guarantee or prove a certain data packet has actually traversed a selected trusted path step-by-step. Does this deserve research attention? Best regards, Chunchi
_______________________________________________ alto mailing list [email protected] https://www.ietf.org/mailman/listinfo/alto
