[AUDIT]: Protect P2P against replay attacks
felsweg-iota opened this issue · 1 comments
felsweg-iota commented
Description
The p2p layer of Stronghold is strongly protected by the NOISE protocol provided by libp2p. The current implementation does not prevent attackers to replay intercepted messages against a number of peers. Provide the means for each request per session to invalidate replayed request packets.
Motivation
Counter replay attacks
Requirements
- Prevent intercepted requests send again towards a number of peers
Open questions (optional)
None
Are you planning to do it yourself in a pull request?
Yes.
felsweg-iota commented
With the removal of the p2p crate, this issue is obsolete.