Comments (3)
Hi There!
I have been following your work for some time and I'm really excited about this library.
For some background, I work on ETH2.0, which is Ethereum's major upgrade to PoS and sharding. I have been working with others for the past several months on various aspects of networking and there has been little talk about using various privacy-preserving primitives in ETH2.0.
As a starter, I looked into potentially adapting Dandelion++ for transaction (or in ETH2.0's case, attestation) sending. However, I quickly realized that in PoS networks, we need some form of long-term identity at the network layer in order to properly penalized misbehaving nodes.
Anyways, it would be great to have your expertise in building scalable, privacy-preserving networks to Ethereum and see what you think of various proposals around networking are.
from p3lib.
Here are the current networking specs: https://github.com/ethereum/eth2.0-specs/tree/dev/specs/networking
We are using libp2p to build out our client and currently have a working implementation of gossipsub: https://github.com/libp2p/specs/tree/master/pubsub/gossipsub#implementation-status
The currently proposed discovery mechanism uses Kademlia's peer discovery table. It's called discv5. However, it's still unclear whether ETH2.0 will also take advantage of Kademlia's content routing capabilities. We are still researcher DHT alternatives since Kademlia would make ETH2.0 for susceptible to eclipse attacks.
There has also been some discussions on using onion routing as well but these are still in the air.
from p3lib.
Hey @Mikerah! Thanks! That sounds like an interesting open problem. Based on my understanding, Dandelion++ and onion routing (but not Tor) seem to be good matches for enhancing privacy while keeping a long-term identities, since privacy comes from adding noise and plausible deniability instead of changing network identifiers. I need to get more context and read carefully the current Serenity specs, but it seems to me that DHT-based service discovery and the way gossip subscriptions are stored (I believe as a DHT key-value, but will need to double-check) might disclose too much information about validators to curious peers/adversaries. For example, the problem I see with pubsub subscriptions in a DHT in that a rendezvous point (represented as a specific CID) are used to store provider records, one per subscriber. In this case, if I want to learn who is subscribing to a particular channel (say beaconchain-03
), I just need do a DHT provider request to the correspondent CID.
We've been entertaining a new idea for privacy preserving DHT lookups and rendevouz points based on centralized and/or decentralized Private Information Retrieval systems. Not sure if this is a good match for your case, but could be. Some rough notes on that can be found here
I'm trying to get more context here, do you have any other pointer suggestions than these: ethresearch/p2p#5 ethresearch/p2p#10 ethresearch/p2p#11 ?
from p3lib.
Related Issues (20)
- [meta issue]create mix header HOT 1
- Add automated testing and github badge HOT 1
- [discussion] Mitigate DoS attacks on Sphinx relays
- Add support to more ECDSA implementations
- [p3lib-sphinx v0.1] release!
- Requests and ideas: What next? HOT 2
- Specs and implement SURBs HOT 4
- Packet payload HMAC
- Refactor to allow developers to use other ciphers than ChaCha20
- Default nonce security
- Header verification before processing HOT 1
- Group element encoding
- Coherently transform bytes to multiaddr HOT 1
- [criop2p] think about adding "Content Resolver with Interest Obfuscation in P2P networks (CRIOP2P)"
- [octopusdht] create specs for anonymous and secure DHT lookup HOT 1
- DHT anonymous lookup - requesting full routing table
- [octopusdht] should the implementation include active attacks detection?
- go mod: unexpected module path "p3lib" HOT 1
- Distributed Reputaiton and DDoS
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from p3lib.