Matthew Toseland wrote: > Should we enable FOAF routing anyway, and if so, which mitigation measures do > we need to implement first? Note that encrypted tunnels would not solve this > problem, as they are impacted by it also (if we do rendezvous at a key, and > use FOAF-routing; random walk rendezvous wouldn't be affected).
I'm not sure that limiting the traffic per peer will solve the problem. On opennet an attacker can create any number of Sybils and/or bombard nodes with connection requests until most of their peers are attacker-controlled. I don't know of any solutions to the Sybil attack that are applicable to opennet. Perhaps we just need to accept that opennet will never be fully secure? Cheers, Michael
