Idea: Watchdog #70

Nueva incidencia

Cerrada

abierta 2018-06-27 17:20:28 +00:00 por sarah · 2 comentarios

sarah comentado 2018-06-27 17:20:28 +00:00

Propietario

Copiar enlace

One of the open problems we have is how peers find and choose cwtch servers and detect bad servers. Here is the barebones of an idea to solve part of that problem:

1. Each peer runs a watchdog system which is a set of peers and group that randomly communicate over a server. The watchdog system runs in the background and periodically checks that all the watchdog peers are seeing the same group communication.
2. If the watchdog finds a discrepancy they mark the cwtch server with a lower score - over time the peer has a list of servers that have a history of trust.
3. The watchdog cycles through new servers, but always watches the servers that are being used by current groups.

Watchdogs could also determine stats like server latency.

How peers find new servers is still an open question. I think an open directory might be a way to go, but has obvious issues some partially mitigated by having a watchdog in place.

Also, what's kinda cool about this approach is that we can build both parts as Cwtch applications.

One of the open problems we have is how peers find and choose cwtch servers and detect bad servers. Here is the barebones of an idea to solve part of that problem: 1. Each peer runs a watchdog system which is a set of peers and group that randomly communicate over a server. The watchdog system runs in the background and periodically checks that all the watchdog peers are seeing the same group communication. 2. If the watchdog finds a discrepancy they mark the cwtch server with a lower score - over time the peer has a list of servers that have a history of trust. 3. The watchdog cycles through new servers, but always watches the servers that are being used by current groups. Watchdogs could also determine stats like server latency. How peers *find* new servers is still an open question. I think an open directory might be a way to go, but has obvious issues some partially mitigated by having a watchdog in place. Also, what's kinda cool about this approach is that we can build both parts as Cwtch applications.

gpestana comentado 2018-07-06 14:24:12 +00:00

Colaborador

Copiar enlace

How would you define "bad servers"? Based on the paper, I assume servers which selectively often fail to relay messages and modify relayed messages. Also servers with high latency, maybe?

The watchdog idea sounds quite reasonable and is similar to protocols which do computation verification through sampling. I think one of the biggest challenges would be how to limit the request overhead to servers, which in the worst case scenario could result in some sort of DoS. The overhead is not that large, but maybe its something that should be considered if the servers are publicly available and everyone can verify.

How would you define "bad servers"? Based on the paper, I assume servers which selectively often fail to relay messages and modify relayed messages. Also servers with high latency, maybe? The watchdog idea sounds quite reasonable and is similar to protocols which do computation verification through sampling. I think one of the biggest challenges would be how to limit the request overhead to servers, which in the worst case scenario could result in some sort of DoS. The overhead is not that large, but maybe its something that should be considered if the servers are publicly available and everyone can verify.

sarah comentado 2020-10-08 20:48:54 +00:00

Autoría

Propietario

Copiar enlace

With the tokenboard server approach, key signing and ideas around trust-providers I'm going to close this issue in favour of exploring these ideas in technical reports/research papers on this topic in the future.

With the tokenboard server approach, key signing and ideas around trust-providers I'm going to close this issue in favour of exploring these ideas in technical reports/research papers on this topic in the future.

sarah cerró esta incidencia 2020-10-08 20:48:54 +00:00

Inicie sesión para unirse a esta conversación.

Ninguna Rama/Etiqueta especificada

Ramas Etiquetas

master

ep

offline-messages

acl-v2

overlays

android_file_download_fix

hybridgroups

enhanced-permissions

settings

post-stable-fixes

fixups

stable-blockers

search

crForceDisconn

server-update

conversation_search

fixCR

deletecontactfix

startupbugs

font-setting

events

handleStatus

fuzzbot

code-fixes

fixpanic

autodownload

esi

eventhooks

autobindings

contactRetryDisconn

priority

createProfileAttr

serverAccept

connectionLogic

fixdeletep2

cached_tokens

indents_and_tools

go_update

protocl_engine_shutdown_fix

timeout_fixes_tokens

fixShutdown

networkAfterOnline

surface-tokens

updateDrone

thread_works

file_sharing_fixes

cbump

emitVer

cleanAndNoDupImport

filesharing-persist

mgroups

tapir-gc

winExport

perf

plugins

healthTime

parseScope

send

sendRetId

nc

import_export

state

profile_images

fastercwtch

tapir0.5

sender_side_previews

hash

1.7conn

1.6_conn

fixAcceptBlock

storage_engine_refactor

publicname

v0.27.0

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.1

v0.25.0

v0.24.5

v0.24.4

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.1

v0.23.0

v0.22.2

v0.22.1

v0.22.0

v0.21.0

v0.20.8

v0.20.7

v0.20.6

v0.20.5

v0.20.4

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.7

v0.19.6

v0.19.5

v0.19.4

v0.19.3

v0.19.2

v0.19.1

v0.19.0

v0.18.10

v0.18.9

v0.18.8

v0.18.7

v0.18.6

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.8

v0.16.7

v0.16.6

v0.16.5

v0.16.4

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.2

v0.15.1

v0.15.0

v0.14.19

v0.14.18

v0.14.17

v0.14.16

v0.14.15

v0.14.14

v0.14.13

v0.14.12

v0.14.11

v0.14.10

v0.14.9

v0.14.8

v0.14.7

v0.14.6

v0.14.5

v0.14.4

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.3

v0.13.2

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.2

v0.9.1

v0.9.0

v0.8.12

v0.8.11

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

v0.7.2

v0.7.1

v0.7.0

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.1

v0.5.0

v0.4.11

v0.4.10

v0.4.9

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.1-pr-1

v0.2.1-pr

v0.2.0

v0.2

Etiquetas

Limpiar etiquetas   

applications

  

BLOCKED

  

bug

  

design

  

duplicate

  

enhancement

  

fixed?

  

funding-needed

  

help wanted

  

infrastructure

  

invalid

  

payments

  

qubes

  

question

  

ready-for-implementation

  

refactor

  

spam

  

tapir-server

  

testing

  

tor

  

wontfix

Sin etiquetas

applications

BLOCKED

bug

design

duplicate

enhancement

fixed?

funding-needed

help wanted

infrastructure

invalid

payments

qubes

question

ready-for-implementation

refactor

spam

tapir-server

testing

tor

wontfix

Milestone

Limpiar Milestone

No hay elementos

Sin Milestone

Asignados

Limpiar asignados

No asignados

2 participantes

Notificaciones

Suscribir

Fecha de vencimiento

La fecha de vencimiento es inválida o está fuera de rango. Por favor utilice el formato 'aaaa-mm-dd'.

Sin fecha de vencimiento.

Dependencias

No se han establecido dependencias.

Referencia: cwtch.im/cwtch#70

No se ha proporcionado una descripción.