3.6 KiB
| title |
|---|
| Security Features |
Waku's protocol layers offer different services and security considerations, shaping the overall security of Waku. We document the security models in the RFCs of the protocols, aiming to provide transparent and open-source references. This empowers Waku users to understand each protocol's security guarantees and limitations.
Some of the Waku's security features include the following:
Pseudonymity
Waku ensures pseudonymity across its protocol layers, using libp2p PeerID as identifiers instead of disclosing true identities. However, it's important to note that pseudonymity doesn't provide complete anonymity. Actions performed under the same pseudonym (PeerID) can be linked, leading to the potential re-identification of the actual actor.
Anonymity/Unlinkability
Anonymity means an adversary cannot connect an actor to their actions or data. To achieve anonymity, avoiding linking activities with actors or their Personally Identifiable Information (PII) is crucial. In Waku, the following anonymity features are provided:
- Publisher-Message Unlinkability: Ensures that the publisher of messages in the
Waku Relayprotocol cannot be linked to their published messages. - Subscriber-Topic Unlinkability: Ensures that the subscriber of topics in the
Waku Relayprotocol cannot be linked to the topics they have subscribed to.
Spam Protection
The spam protection feature in Waku Relay ensures that no adversary can flood the system with many messages, intentionally or not, regardless of the content's validity or usefulness. This protection is achieved through the scoring mechanism of GossipSub v1.1. Peers assign scores to their connections based on their behavior and remove peers with low scores.
Ongoing research is being conducted, including developing Rate Limiting Nullifiers (RLN), which can be explored further at: https://github.com/vacp2p/research/issues/148.
Data Confidentiality, Integrity, and Authenticity
Confidentiality in Waku is ensured through data encryption, while integrity and authenticity are achieved through digital signatures. These security measures are available in Waku Message (version 1) and Waku Noise protocols, which offer payload encryption and encrypted signatures. Waku Noise also facilitates secure channel negotiation within the Waku network.
Security Considerations
In protocols like Waku Store and Waku Filter, where direct connections are required for the designated service, anonymity or unlinkability is not guaranteed. This is because peers use their PeerID to identify each other during direct connections, making the service obtained in these protocols linkable to the beneficiary's PeerID, considered Personally Identifiable Information (PII). In Waku Store, the queried node can link the querying node's PeerID to the topics being queried. Similarly, in Waku Filter, a full node can link the PeerID of a light node to its content filter.