Hi ALTOers, Hello Ayoub

Just joined the 5th ALTO interim yesterday, regarding Ayoub’s deck about adding 
trust to ALTO, I may have a few ideas and comments open for discuss.


l  Comments 1: Regarding the Cost Map and trustworthiness metrics, I think it 
could be a direction where we abstract the security policy into security 
budget, and abstract device trustworthiness into security cost. A trusted 
router/path costs near-zero security cost while less trusted routers/paths 
could use up the security budget, which represent the physical significance of 
accumulating too much security risk this topology could take.


l  Comments 2: Regarding how to use the trust inputs received from the ALTO 
server and how to share trusted output with ALTO client, I think it could also 
be a direction where we have privacy-preserving computation techniques run on 
edge servers. A cryptographically accelerated edge server could 1. help end 
user device receive trust information from ALTO server in order to compute and 
optimize network performance in a cryptographically secure way, 2. help offload 
heavy cryptographic computation tasks from end devices to edge servers, 3. 
prevent direct user exposure of plain-text, privacy-sensitive information 
(basically a powerful proxy). Personally, I believe privacy-preserving 
cryptographic computing techniques, such as Zero-Knowledge Proof, Fully 
Homomorphic Encryption and Federated Learning is too powerful to avoid talking 
about. If anyone is interested I can prepare an insight analysis and/or a new 
mailing list.


l  Comments 3: Since routing security is important I think we need some 
mechanisms not only to assess the trustworthiness of the routing path, but also 
to ensure the actual using of this trusted routing path. For example, how to 
guarantee or prove a certain data packet has actually traversed a selected 
trusted path step-by-step. Does this deserve research attention?


Best regards,
Chunchi

_______________________________________________
alto mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/alto

Reply via email to