Hacker News new | ask | show | jobs
by survirtual 1265 days ago
You can restrict DHTs to accept well-formed requests and further restrict them using a web of trust. With a large enough network and an on onboarding path using nodes that have higher bandwidth, it can work to mitigate that vector I’d think.

It would be really hard to launch that attack with a DHT that implements appropriate pruning, drop, and block rules for bad behavior. All that can feed into a personal (& autonomous) web of trust. Any references for me to read more about this?
1 comments
KirillPanov 1264 days ago
> an on onboarding path using nodes that have higher bandwidth

i.e. Cloudflare. It works great. It is centralized.

> Any references for me to read more about this?

https://www.bittorrent.org/beps/bep_0000.html

https://zetok.github.io/tox-spec/

link
survirtual 1264 days ago
No, not Cloudflare.

You can score member nodes and gauge bandwidth in the known network. Nodes can set their constraints accordingly and take more requests than others. Nodes that are open to edge & can handle a lot more connections can handle the bulk of onboarding requests.

This does not need to be a centralized process.

link