[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
POW / rPOW
- To: mixminion-dev@xxxxxxxx
- Subject: POW / rPOW
- From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
- Date: Thu, 23 Dec 2004 01:17:56 -0500
- Delivered-to: archiver@seul.org
- Delivered-to: mixminion-dev-outgoing@seul.org
- Delivered-to: mixminion-dev@seul.org
- Delivery-date: Thu, 23 Dec 2004 01:19:25 -0500
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=doLNesgcwfx6Hc4+Loe92U2fYGA1abpl/vZd/azIqsSaoydIeAg6Ely9XVgpcml2wo4csbMp6tC2nTMyjNyNypQu2nrq9Dxi/BWHhNVS/XNPSX33/aEIwWUs3DJJjrr4rEbKkHeX06ZtFeghlX/3dLAz7kM2TzvQRRp1ZMTpIwg=
- Reply-to: mixminion-dev@xxxxxxxxxxxxx
- Sender: owner-mixminion-dev@xxxxxxxxxxxxx
has any thought been given to the use of proof of work tokens
(hashcash) or reusable proof of work tokens (rpow) for message
admission control to the mixminion network?
I suspect rpow would have some privacy concerns, so I guess that in
each layer of routing a user could store a non-reusable pow inside the
message.. I'd suspect that there are some padding issues that would
need to be resolved to prevent such a system from affecting anonymity.
In any case, the use of POW tokens could help inhibit flooding attacks
the drain the anonymity mix. Exit gateways that transfer to normal
email could require significant POW tokens coded for the email
recipient that could help dissuade any attack based on output volume.
Also, nym servers that have a finite supply of reply blocks could
demand (user configured) large POW which must be provided by the
sender to inhibit DOS attacks.
I think it's important that such DOS attacks be addressed: even if the
mix still promises good anonymity properties in the face of such an
attack, the impact on the network may cause users to behave in a way
which compromises their anonymity.