ð
Original date posted:2021-04-23
ð Original message:
I propose a simple mitigation to increase the capital requirement of
channel-jamming attacks. This would prevent an unsophisticated attacker
with low capital from jamming a target channel. It seems to me that this
is a *free* mitigation without any downsides (besides code-writing), so I'd
like to hear other opinions.
In a commitment transaction, we trim dust HTLC outputs. I believe that the
reason for the 483 HTLC limit each side has in the spec is to prevent
commitment tx's from growing unreasonably large, and to ensure they are
still valid tx's that can be included in a block. If we don't include dust
HTLCs in this calculation, since they are not on the commitment tx, we
still allow 483 (x2) non-dust HTLCs to be included on the commitment tx.
There could be a configurable limit on the number of outstanding dust
HTLCs, but the point is that it doesn't affect the non-dust throughput of
the channel. This raises the capital requirement of channel-jamming so
that each HTLC must be non-dust, rather than spamming 1 sat payments.
Interested in others' thoughts.
Eugene (Crypt-iQ)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/lightning-dev/attachments/20210423/28a7f555/attachment.html>;
Eugene Siegel [ARCHIVE] /
npub139âŠmvj0j
2023-06-09 13:02:22
in reply to nevent1qâŠn7l5
Author Public Key
npub139lamalg6mww4czepk75anugudczcglp8p9ej9kafmkvgxyk4uus7mvj0jPublished at
2023-06-09 13:02:22Event JSON
{
"id": "edb6a428332d8e642b711559bff7aaa6f9fb1ccde8e43e28034e7d72e3cd9673",
"pubkey": "897fddf7e8d6dceae0590dbd4ecf88e3702c23e1384b9916dd4eecc41896af39",
"created_at": 1686315742,
"kind": 1,
"tags": [
[
"e",
"b3e1babcd18c032cd663f50739c5addeb9efde0924211109d945ef414e2f663d",
"",
"reply"
],
[
"p",
"9456f7acb763eaab2e02bd8e60cf17df74f352c2ae579dce1f1dd25c95dd611c"
]
],
"content": "ð
Original date posted:2021-04-23\nð Original message:\nI propose a simple mitigation to increase the capital requirement of\nchannel-jamming attacks. This would prevent an unsophisticated attacker\nwith low capital from jamming a target channel. It seems to me that this\nis a *free* mitigation without any downsides (besides code-writing), so I'd\nlike to hear other opinions.\n\nIn a commitment transaction, we trim dust HTLC outputs. I believe that the\nreason for the 483 HTLC limit each side has in the spec is to prevent\ncommitment tx's from growing unreasonably large, and to ensure they are\nstill valid tx's that can be included in a block. If we don't include dust\nHTLCs in this calculation, since they are not on the commitment tx, we\nstill allow 483 (x2) non-dust HTLCs to be included on the commitment tx.\nThere could be a configurable limit on the number of outstanding dust\nHTLCs, but the point is that it doesn't affect the non-dust throughput of\nthe channel. This raises the capital requirement of channel-jamming so\nthat each HTLC must be non-dust, rather than spamming 1 sat payments.\n\nInterested in others' thoughts.\n\nEugene (Crypt-iQ)\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/lightning-dev/attachments/20210423/28a7f555/attachment.html\u003e",
"sig": "d512a57080c17f083bdb07b0c3f7157ca09bd504662e7551e906635f107a5d0030f7174e89e5516bdf2787c6a53d92fe3e31268a89e74b71d1230a586ca9b4f2"
}