there is still, if you avoid distributing the indices, a single point of failure as i see it. storing a mapping file is an easier implementation of something which is actually pretty similar to what I've suggested. If that is what you intend to do, I am sorry for bothering the list. flaws in what you suggest are also quite similar as i understand the situation.
I'm aware of the Syblis attack. however since "trust" in the web is given without strong validation of peers, and peers are replaced with ones never validated there is no strong foundation to the trust of peers by the "web of trust" (but there is obviously a foundation for peers trusting the web). they are therefor also attack-able in most common cases (however with slightly higher difficulty). an exception is where at least a single truly trusted peer remains alive throughout the life of each file. As i understand it this isn't the case, and "original" and well-credited peers are often not enough as "last resort" live peers. moreover, this somehow tempers with the whole purpose of *secure* p2p (i.e. not having a trusted source able to serve the actual data available at all times) a disclaimer worth noting: I have little experience with the common p2p networks (such as BitTorrent etc), and mostly theoretical & practical experience with p2p networks of a more "proprietary" nature. please let me know if this sidetracks away of the intended discussion, I have no intention to waste anyone of our's time. On Tue, Jul 17, 2012 at 2:49 AM, Tony Arcieri <[email protected]>wrote: > On Mon, Jul 16, 2012 at 3:48 PM, nir izraeli <[email protected]> wrote: > >> I can't see how this can't already be done with current DHT >> implementations. >> one who can add "tags" could also add "files" spam. >> > > There was some earlier discussion on this list regarding a DoS against > the BitTorrent DHT perpetrated by malicious Sybils who cluster around > particular ID(s) they wish to disrupt service for. > > To prevent this sort of attack, the DHT needs to be able to consult the > web of trust. > > -- > Tony Arcieri > > > _______________________________________________ > p2p-hackers mailing list > [email protected] > http://lists.zooko.com/mailman/listinfo/p2p-hackers > >
_______________________________________________ p2p-hackers mailing list [email protected] http://lists.zooko.com/mailman/listinfo/p2p-hackers
