Security · 1h ago
Kademlia DHT Eclipse Attack Persists Despite Record Signing Fix
A recent fix in py-libp2p prevents record forgery but does not address eclipse/Sybil attacks, where attackers generate many valid peer IDs to dominate routing tables. The S/Kademlia paper proposes crypto-puzzle IDs and disjoint lookup paths as countermeasures. The author explores whether py-libp2p will adopt these defenses.
Meridian48 take
The piece highlights a critical gap in DHT security that record signing alone cannot fill, urging the libp2p community to consider stronger routing-layer protections.
Read the full reporting
Hardening Kademlia DHT: The Eclipse Attack That Record Signing Doesn't Stop →
DEV Community
kademlia-dhteclipse-attack