* beta2 to beta3 * adds protocol ids to waku2 specs
slug | title | name | status | editor | contributors | ||
---|---|---|---|---|---|---|---|
13 | 13/WAKU2-STORE | Waku v2 Store | draft | Sanaz Taheri <sanaz@status.im> |
|
This specification explains the Waku 13/WAKU2-STORE
protocol which enables querying of messages received through relay protocol and stored by other nodes.
It also supports pagination for more efficient querying of historical messages.
Protocol identifier*: /vac/waku/store/2.0.0-beta3
Design Requirements
Nodes willing to provide storage service using 13/WAKU2-STORE
protocol SHOULD provide a complete and full view of message history.
As such, they are required to be highly available and in specific have a high uptime to consistently receive and store network messages.
The high uptime requirement makes sure that no message is missed out hence a complete and intact view of the message history is delivered to the querying nodes.
Nevertheless, in case that storage provider nodes cannot afford high availability, the querying nodes may retrieve the historical messages from multiple sources to achieve a full and intact view of the past.
Security Consideration
The main security consideration to take into account while using 13/WAKU2-STORE
is that a querying node have to reveal their content filters of interest to the queried node, hence potentially compromising their privacy.
Terminology
The term Personally identifiable information (PII) refers to any piece of data that can be used to uniquely identify a user. For example, the signature verification key, and the hash of one's static IP address are unique for each user and hence count as PII.
Adversarial Model
Any peer running the 13/WAKU2-STORE
protocol, i.e. both the querying node and the queried node, are considered as an adversary.
Furthermore, we currently consider the adversary as a passive entity that attempts to collect information from other peers to conduct an attack but it does so without violating protocol definitions and instructions.
As we evolve the protocol, further adversarial models will be considered.
For example, under the passive adversarial model, no malicious node hides or lies about the history of messages as it is against the description of the 13/WAKU2-STORE
protocol.
The following are not considered as part of the adversarial model:
- An adversary with a global view of all the peers and their connections.
- An adversary that can eavesdrop on communication links between arbitrary pairs of peers (unless the adversary is one end of the communication). In specific, the communication channels are assumed to be secure.
Wire Specification
Peers communicate with each other using a request / response API. The messages sent are Protobuf RPC messages which are implemented using protocol buffers v3. The followings are the specifications of the Protobuf messages.
Payloads
syntax = "proto3";
message Index {
bytes digest = 1;
double receivedTime = 2;
}
message PagingInfo {
uint64 pageSize = 1;
Index cursor = 2;
enum Direction {
BACKWARD = 0;
FORWARD = 1;
}
Direction direction = 3;
}
message ContentFilter {
string contentTopic = 1;
}
message HistoryQuery {
// the first field is reserved for future use
string pubsubtopic = 2;
repeated ContentFilter contentFilters = 3;
PagingInfo pagingInfo = 4;
}
message HistoryResponse {
// the first field is reserved for future use
repeated WakuMessage messages = 2;
PagingInfo pagingInfo = 3;
}
message HistoryRPC {
string request_id = 1;
HistoryQuery query = 2;
HistoryResponse response = 3;
}
Index
To perform pagination, each WakuMessage
stored at a node running the 13/WAKU2-STORE
protocol is associated with a unique Index
that encapsulates the following parts.
digest
: a sequence of bytes representing the SHA256 hash of aWakuMessage
. The hash is computed over the concatenation ofcontentTopic
andpayload
fields of aWakuMessage
(see 14/WAKU2-MESSAGE).receivedTime
: the UNIX time at which the waku message is received by the node running the13/WAKU2-STORE
protocol.
PagingInfo
PagingInfo
holds the information required for pagination. It consists of the following components.
pageSize
: A positive integer indicating the number of queriedWakuMessage
s in aHistoryQuery
(or retrievedWakuMessage
s in aHistoryResponse
).cursor
: holds theIndex
of aWakuMessage
.direction
: indicates the direction of paging which can be eitherFORWARD
orBACKWARD
.
ContentFilter
ContentFilter
carries the information required for filtering historical messages.
contentTopic
represents the content topic of the queried historical Waku messages. This field maps to thecontentTopic
field of the 14/WAKU2-MESSAGE.
HistoryQuery
RPC call to query historical messages.
- The
pubsubTopic
field MUST indicate the pubsub topic of the historical messages to be retrieved. This field denotes the pubsub topic on which waku messages are published. This field maps totopicIDs
field ofMessage
in11/WAKU2-RELAY
. Leaving this field empty means no filter on the pubsub topic of message history is requested. This field SHOULD be left empty in order to retrieve the historical waku messages regardless of the pubsub topics on which they are published. - The
contentFilters
field MUST indicate the list of content filters based on which the historical messages are to be retrieved. Leaving this field empty means no filter on the content topic of message history is required. This field SHOULD be left empty in order to retrieve historical waku messages regardless of their content topics. PagingInfo
holds the information required for pagination. ItspageSize
field indicates the number ofWakuMessage
s to be included in the correspondingHistoryResponse
. If thepageSize
is zero then no pagination is required. If thepageSize
exceeds a threshold then the threshold value shall be used instead. In the forward pagination request, themessages
field of theHistoryResponse
shall contain at maximum thepageSize
amount of waku messages whoseIndex
values are larger than the givencursor
(and vise versa for the backward pagination). Note that thecursor
of aHistoryQuery
may be empty (e.g., for the initial query), as such, and depending on whether thedirection
isBACKWARD
orFORWARD
the last or the firstpageSize
waku messages shall be returned, respectively. The queried node MUST sort theWakuMessage
s based on theirIndex
, where thereceivedTime
constitutes the most significant part and thedigest
comes next, and then perform pagination on the sorted result. As such, the retrieved page contains an ordered list ofWakuMessage
s from the oldest message to the most recent one.
HistoryResponse
RPC call to respond to a HistoryQuery call.
- The
messages
field MUST contain the messages found, these are [WakuMessage
] types as defined in the corresponding specification. PagingInfo
holds the paging information based on which the querying node can resume its further history queries. ThepageSize
indicates the number of returned waku messages (i.e., the number of messages included in themessages
field ofHistoryResponse
). Thedirection
is the same direction as in the correspondingHistoryQuery
. In the forward pagination, thecursor
holds theIndex
of the last message in theHistoryResponse
messages
(and the first message in the backward paging). The requester shall embed the returnedcursor
inside its nextHistoryQuery
to retrieve the next page of the waku messages.
Thecursor
obtained from one node SHOULD NOT be used in a request to another node because the result MAY be different.
Future Work
- Anonymous query: This feature guarantees that nodes can anonymously query historical messages from other nodes i.e., without disclosing the exact topics of waku messages they are interested in.
As such, no adversary in the13/WAKU2-STORE
protocol would be able to learn which peer is interested in which content filters i.e., content topics of waku message. The current version of the13/WAKU2-STORE
protocol does not provide anonymity for historical queries as the querying node needs to directly connect to another node in the13/WAKU2-STORE
protocol and explicitly disclose the content filters of its interest to retrieve the corresponding messages. However, one can consider preserving anonymity through one of the following ways:- By hiding the source of the request i.e., anonymous communication. That is the querying node shall hide all its PII in its history request e.g., its IP address. This can happen by the utilization of a proxy server or by using Tor. Note that the current structure of historical requests does not embody any piece of PII, otherwise, such data fields must be treated carefully to achieve query anonymity.
- By deploying secure 2-party computations in which the querying node obtains the historical messages of a certain topic whereas the queried node learns nothing about the query. Examples of such 2PC protocols are secure one-way Private Set Intersections (PSI).
Copyright
Copyright and related rights waived via CC0.