Assessment: creation of blocklist and allowlist of data request sources to prevent inconsistent source attacks #1096
Labels
assessment 🧐
Needs preliminary evaluation/study/assessment work
security 🛡️
Changes that affect software security for the good or the bad
Comments
lrubiorod
added
the
assessment 🧐
aesedepece
changed the title
aesedepece
added
the
security 🛡️
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently is very easy to create a Data Requests which penalise honest witnesses (Inconsistent source attack).
The idea is to create two lists (allowlist and blocklist), that provide information about data requests sources that are safu or not. By example, safuness could be tested acceding to the source through TOR and without TOR and checking that the same response is obtained.
The text was updated successfully, but these errors were encountered: