Skip to content

Latest commit

 

History

History
53 lines (40 loc) · 2.01 KB

README.md

File metadata and controls

53 lines (40 loc) · 2.01 KB

Word of Wisdom Service with Proof Of Work DDOS Protection

Task

Design and implement a “Word of Wisdom” tcp server

  • TCP server should be protected from DDOS attacks with the Proof of Work, the challenge-response protocol should be used.
  • The choice of the POW algorithm should be explained
  • After Prof Of Work verification, server should send one of the quotes from “word of wisdom” book or any other collection of the quotes
  • Docker file should be provided both for the server and for the client that solves the POW challenge

How to run

Run server

docker-compose up -d server
// You can set env HOST. Default - 0.0.0.0:8001

Run client

docker-compose up -d client
// You can set env HOST. Default - 0.0.0.0:8001

Implementation

  • The client establishes a new TCP connection with the server
  • The server generates a new challenge(time-based) with a difficulty level of 2
  • The server sends the message to the client
  • The client parses the challenge and the difficulty
  • The client calculates the right nonce to solve it
  • The client sends the solution with the challenge
  • If nonce is valid, the server sent a quote from a "word of wisdom" book
  • If nonce is invalid, the server closes the stream

PoW Algorithm

I used the Hashcash with SHA256 hashing PoW algorithm to set DDoS protection

  • It is quick to implement, and many libraries provide SHA256 hashing
  • It is easy to check the solution
  • It doesn't consume much memory, so even clients with limited memory can use this service
  • In this and many cases sha256 is sufficient to protect from DDoS attacks
  • Using Hashcash is a common approach to limit spam and provide DDOS protection

Tests and benchmarks can be found in the test.rs and benches/pow_benchmark.rs files

Difficulty(leading zeros) Average time to solve
1 69.346 µs
2 16.921 ms
3 3.3267 s