Kademlia DHT Remains Vulnerable to Eclipse Attacks Despite Record-Signing Fix
A security patch in py-libp2p recently closed a record-forgery vulnerability by binding signed PeerRecords to their signer's identity, preventing attackers from relaying another peer's record. However, systems engineer Valentyn Kit pointed out that this fix does not address eclipse and Sybil attacks, which require no forgery at all. Because libp2p peer IDs are simply derived from public keys, an attacker can generate thousands of valid IDs in seconds and cluster them around a target key in Kademlia's XOR-based routing space. Once those attacker-controlled nodes occupy the closest routing slots, they can intercept or manipulate lookups for any target key while all their messages pass signature checks legitimately. The author explored S/Kademlia countermeasures — including proof-of-work ID constraints and subnet diversity filters — as potential mitigations for this routing-layer threat.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in