On 01/04/14 04:34, Ian Clarke wrote: > This seems like an amazingly centralized thing to do in software, the > primary advantage of which is supposed to be its decentralization. The below is somewhat out of date. The current proposal is: - Only route high HTL requests to nodes which have been connected for X period. This was originally proposed as a quick fix for MAST, but it wasn't deployed because of possible bad effects on routing. We need to deal with this ASAP. - Centralise identity creation, as below, but without necessarily demanding payment. Nodes must NOT be able to choose a location easily. - Move to tunnels (e.g. ShadowWalker or some PISCES variant) as quickly as possible. -> Mallory needs ~ 20% rather than ~ 1% to surveil everything. - Use identities, peer lists and shadow nodes (needed for tunnels anyway) to try to monitor peer limits, uptime etc on a global level, and thus impose more stringent (cross-node, but still decentralised) limits. - Ideally enforce one node per IP address and 100 connections per node. But this probably isn't possible in practice due to IPv6 etc.
If we can force attackers to contribute to the network in order to gain access to sensitive requests, and if we can force them to take some time before they can use a new location, the cost of running the nodes may be higher than any plausible opennet join fee (which has poor user acceptability, though could be implemented in a more or less decentralised manner if we don't need the money, think e.g. bitcoin provable sacrifice protocols). Centralising identity creation to the seednodes is not that much more centralised than what we have now. Every node that uses opennet (more or less) uses the seeds when it is created and most use the seeds whenever they have more than a few minutes downtime. If you want a *fully* decentralised network you have to use darknet; this has always been true. Obviously there are more urgent issues such as making darknet as easy and fast as possible and fixing the client layer. > Ian.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Devl mailing list Devl@freenetproject.org https://emu.freenetproject.org/cgi-bin/mailman/listinfo/devl
