SLIDE 1
GNUnet A network protocol stack for building secure, distributed, - - PowerPoint PPT Presentation
GNUnet A network protocol stack for building secure, distributed, - - PowerPoint PPT Presentation
GNUnet A network protocol stack for building secure, distributed, and privacy-preserving application FOSDEM20 Martin Schanzenbach 2/2/2020 The Internet is under attack The Internet HTTP, Facebook, Google, Libra ... DNS / X.509 TCP /
SLIDE 2
SLIDE 3
HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer The “Internet”
1
SLIDE 4
HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer The “Internet”
*Images from eff.org
1
SLIDE 5
HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer The “Internet”
*Images from eff.org
1
SLIDE 6
HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer The “Internet”
*Images from eff.org
1
SLIDE 7
Vision
Full-stack replacement of the Internet infrastructure.
- Metadata protection.
- Encryption.
- Decentralization.
2
SLIDE 8
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer ???
3
SLIDE 9
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer OTR-like protocol ???
3
SLIDE 10
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer DHT OTR-like protocol ???
3
SLIDE 11
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer Ratchet / Axolotl / Streaming DHT OTR-like protocol ???
3
SLIDE 12
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer Something less MORECOWBELL/ICANN-y Ratchet / Axolotl / Streaming DHT OTR-like protocol ???
3
SLIDE 13
The “Internet” The Wishlist HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer New applications Something less MORECOWBELL/ICANN-y Ratchet / Axolotl / Streaming DHT OTR-like protocol ???
3
SLIDE 14
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer New applications Something less MORECOWBELL/ICANN-y Ratchet / Axolotl / Streaming DHT CORE ???
3
SLIDE 15
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer New applications Something less MORECOWBELL/ICANN-y Ratchet / Axolotl / Streaming R5N DHT CORE ???
3
SLIDE 16
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer New applications Something less MORECOWBELL/ICANN-y CADET R5N DHT CORE ???
3
SLIDE 17
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer New applications GNU Name System CADET R5N DHT CORE ???
3
SLIDE 18
- 4
SLIDE 19
- 5
SLIDE 20
- 6
SLIDE 21
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer GNU Name System CADET R5N DHT CORE ???
7
SLIDE 22
7
SLIDE 23
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer GNU Name System CADET R5N DHT CORE TCP / UDP ?
7
SLIDE 24
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer GNU Name System CADET R5N DHT CORE HTTP(s) / QUIC ?
7
SLIDE 25
The “Internet” HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer GNU Name System CADET R5N DHT CORE Ethernet / WiFi / Bluetooth ?
7
SLIDE 26
The “Internet”
TCP/UDP HTTP(s) WiFi Bluetooth ...
GNU Name System CADET R5N DHT CORE TRANSPORT HTTP, Facebook, Google, Libra ... DNS / X.509 TCP / UDP IP / BGP Ethernet Physical Layer
8
SLIDE 27
TRANSPORT CORE CADET R5N DHT = Service / Process = Dependency / Socket
8
SLIDE 28
TRANSPORT CORE CADET R5N DHT GNS-Go = Service / Process = Dependency / Socket
8
SLIDE 29
TRANSPORT CORE CADET R5N DHT GNS-Go = Service / Process = Dependency / Socket
8
SLIDE 30
TRANSPORT CORE CADET R5N DHT
TRANSPORT-NG
GNS-Go = Service / Process = Dependency / Socket
8
SLIDE 31
voting consensus identity cadet secretsharing set dht core block fs datastore ats nse datacache peerinfo hello transport exit tun dnsstub vpn regex pt dns dnsparser gnsrecord zonemaster namestore gns revocation conversation speaker microphone nat fragmentation topology hostlist scalarproduct secushare social multicast psyc psycstore rps
9
SLIDE 32
Quo Vadis?
2020/2021:
- Make progress with transport redesign/rewrite.
- GNS standardization, documentation.
- GNS alternative implementation (Go).
- Next major releases: 0.13/0.14
Beyond:
- SecuShare
- Additional transports: WiFi/Mesh, Bluetooth, QUIC . . .
- GNS .org replacement authority.
10
SLIDE 33
https://gnunet.org
schanzen@gnunet.org 3D11 063C 10F9 8D14 BD24 D147 0B09 98EF 86F5 9B6A
11
SLIDE 34
References
- 1. Bart Polot and Christian Grothoff. CADET: Confidential Ad-hoc
Decentralized End-to-End Transport. 13th IEEE IFIP Annual Mediterranean Ad Hoc Networking Workshop, 2014
- 2. Nathan S. Evans and Christian Grothoff. R5N: Randomized Recursive
Routing for Restricted-Route Networks. 5th International Conference
- n Network and System Security, 2011.
- 3. Matthias Wachs, Martin Schanzenbach and Christian Grothoff. A
Censorship-Resistant, Privacy-Enhancing and Fully Decentralized Name System. 13th International Conference on Cryptology and Network Security, 2014.
- 4. Christian Grothoff. The GNUnet System. Th`
ese d’habilitation ` a diriger des recherches. 2017.
- 5. Martin Schanzenbach, Georg Bramm, Julian Sch¨
- utte. reclaimID: