Enhancing Rocket Pool Node Security using Sakundi Technology
What is the work being proposed and the related work this builds off of?
The proposed work involves collaborating with Rocket Pool to integrate the advanced capabilities of our Tikuna project, previously funded by the Ethereum Foundation, to enhance security and performance monitoring for Ethereum node operators (NOs). Leveraging Tikuna, we aim to provide Rocket Pool NOs with comprehensive monitoring and alert systems for critical metrics essential for operational excellence and security, such as eclipse attack detection and peer behavior scoring, among others.
Our Tikuna project utilizes Recurrent Neural Networks (RNNs), to effectively detect peer-to-peer (P2P) security threats within the Ethereum blockchain’s network layer. Empirical tests have demonstrated significant advancements in identifying attacks like eclipse and covert flash attacks. Ongoing monitoring efforts have revealed daily anomalies in a limited dataset, emphasizing the need to expand collaboration with additional validator operators to better understand the prevalence of these potential attacks.
Moreover, we have developed a preliminary security dashboard UI providing valuable insights into node behavior and status, which will benefit the Rocket Pool ecosystem. Through our partnership, we seek to scale and refine Sakundi’s solution in a wider real-world application, gathering crucial insights from users in an operational environment. This collaboration aims to demonstrate the effectiveness of our solution on a larger scale and extend its application across more nodes and protocols, ultimately enhancing the ecosystem’s reliability and security. The goal is to make advanced monitoring and alert functionalities easily accessible to NOs without requiring deep technical knowledge of the underlying code.
Will the results of this project be entirely open source?
Tikuna, the data analysis framework, is Open Source under the Apache License. Tikuna already includes some dashboards. We have some other Dashboards that are not open at the moment.
Benefit
| Group | Benefits |
|---|---|
| Potential rETH holders | Sakundi’s monitoring tool enhances trust in Rocket Pool’s validator nodes by providing advanced security and performance insights. This increased reliability attracts more ETH stakers to Rocket Pool, making staking for rETH a preferred choice within the Ethereum ecosystem. |
| rETH holders | N/A |
| Potential NOs | Operating a validator node on a blockchain network introduces significant challenges, especially for those who are new to the task. The complexities of maintaining uptime, securing against threats, and enhancing node performance can be overwhelming. In response to these challenges, Tikuna emerges as a crucial tool for support. Tikuna delivers continuous monitoring services, ensuring that validators remain operational and in sync with the blockchain. It also aids in enhancing node efficiency through detailed network observation. The provision of intuitive dashboards are invaluable for beginner operators, enabling them to make informed decisions regarding their node management. This assistance is key to streamlining the process for individuals new to managing nodes within the Rocket Pool network. |
| NOs | Experienced Ethereum network validator nodes can derive substantial advantages from an AI-powered monitoring and alerting tool, such as the one we propose with Tikuna. The utilization of AI’s advanced analytics capabilities provides an additional layer of protection for node operations. This enhanced security ensures that even experienced validator nodes can uncover and address security threats and vulnerabilities that might otherwise remain unnoticed when relying solely on traditional monitoring tools. In summary, Tikuna not only supports newcomers but also provides invaluable assistance and enhanced security to those who are already proficient in managing Rocket Pool nodes. |
| Community | Our objective is to enhance the security within the Rocket Pool community by offering AI-driven validator security monitoring tools. Leveraging our prior research, funded by the Ethereum Foundation, we’ve developed Tikuna, a security monitoring system tailored for Ethereum’s P2P network. Our plan involves integrating Tikuna into the Rocket Pool network, accommodating various clients, and refining the process of collecting validator data to enhance privacy and efficiency. |
| RPL holders | N/A |
Work
Who is doing the work and what is the background of the people doing the work? What experience do they have with such projects in the past?
The proposal will be executed by a team of professionals with extensive experience in their respective areas:
- Dr. Andres Gomez Ramirez serves as the CEO of Sakundi, an organization dedicated to security and privacy research for blockchain networks. He has a Ph.D. in cybersecurity from the University of Frankfurt and CERN. As a computer scientist with a deep understanding of information security, machine learning, and computing infrastructure setup, he is responsible for providing technical and scientific leadership for the project. His role encompasses leading research activities and overseeing the design and development of our organization’s products.
- Loui Al Sardy holds an M.Eng. in Software Engineering for Industrial Applications and is currently pursuing a Ph.D. at the School of Engineering at Erlangen-Nuremberg University (Germany). With a strong background as a test engineer at a software development company, Loui has acquired valuable experience over the past seven years. Additionally, Loui has conducted research studies on “Intelligent Evolutionary Constraint-based Testing Approaches for Software Vulnerabilities Discovery.”
- Francis Gomez Ramirez is a computer scientist who obtained his degree from the Universidad Nacional of Colombia and has expertise in Project Management from UNITEC University. With a 12-year tenure at Grupo Bancolombia, Francis has demonstrated exceptional proficiency in managing infrastructure and suppliers. Notably, he has led groundbreaking AWS cloud migration processes and has successfully implemented infrastructure automation using pipelines in Azure DevOps. These accomplishments reflect Francis’s technical prowess and exceptional problem-solving abilities.
What is the breakdown of the proposed work, in terms of milestones and/or deadlines?
| Milestone | Description | #Days | Budget |
|---|---|---|---|
| Integration research | Conduct a comprehensive investigation into the seamless integration of our existing monitoring and security tool, Tikuna within the Rocket Pool ecosystem | 10 | 0% |
| Pilot program | Integrate the Tikuna security dashboards in order to make them available to selected Rocket Pool users to overcome the complexity of the existing code | 7 | 40% |
| Gather feedback and make adjustments | Rigorous testing will be conducted to verify the functionality, accessibility, and user-friendliness of the Tikuna security dashboards for Rocket Pool users. In this phase, we will monitor the system’s performance, gather feedback from users, and make necessary adjustments. | 15 | 60% |
How is the work being tested? Is testing included in the schedule?
Testing is fundamental to our approach, with each phase meticulously planned to ensure Tikuna integrates flawlessly with Rocket Pool. Our journey begins with leveraging our past successful integration Edenia’s (our partner) validator nodes as a reference point, providing us with a solid foundation and advanced starting point for compatibility tests. During the pilot program, we focus on deploying Tikuna dashboards to a select group of Rocket Pool users, emphasizing real-world application and immediate feedback. Our primary aim is to conduct these tests within Rocket Pool, using Edenia’s proven integration as a complementary benchmark to enhance our solution’s functionality, performance, and security before its full rollout.
How will the work be maintained after delivery?
To secure Tikuna’s future, we aim for a partnership where Rocket Pool becomes a key customer of Sakundi, utilizing our enhanced services post-grant. Through a pilot program designed around Rocket Pool’s specific needs, we will showcase the effectiveness of Tikuna, positioning it as an indispensable tool for their operations. This strategic collaboration is envisioned to transition into a client-customer relationship, with Rocket Pool leveraging Sakundi’s offerings to ensure optimal network security and performance. Our commitment to adapting and refining Tikuna based on pilot feedback underscores our dedication to meeting Rocket Pool’s requirements, establishing a foundation for long-term mutual success.
Costs
What is the acceptance criteria?
- Integration and Deployment: Seamless integration of the Tikuna solution with Rocket Pool, ensuring compatibility and stable operation without disrupting existing services.
- Pilot Program Success: Meeting specific performance benchmarks in the pilot program, such as enhanced detection and response times to security threats, and improved node performance metrics.
- User Satisfaction: High satisfaction among pilot program participants with Tikuna’s impact on usability and operational efficiency, measured through positive feedback.
- Downtime Reduction and Attack Awareness: Demonstrable reduction in node downtime and effective alerting of security attacks, with metrics established to quantify improvements in these areas.
What is the proposed payment schedule for the grant? How much USD $ and over what period of time is the applicant requesting?
-
Project Start Date: May 1st 2024
-
Project End Date: June 16th 2024
-
Total Days: 46
-
Work Days: 32
Budget use:
Our budget is determined by our infrastructure costs to deliver these services effectively and to compensate for the development work involved.
Grand Total: $5,000
Is the applicant requesting RPL or LUSD?
LUSD
How will the GMC verify that the work delivered matches the proposed cadence?
To ensure the GMC can verify that our work aligns with the proposed cadence, we will provide the following:
- A GitHub repository containing detailed documentation of our solution allows for a transparent review of the project’s development and implementation.
- We will deliver test results and progress reports from our pilot program with Rocket Pool. These documents will showcase the functionality, performance, and real-world applicability of our solution, clearly illustrating how our milestones align with the planned project timeline
What alternatives or options have been considered in order to save costs for the proposed project?
To optimize project costs by minimizing the project’s duration, we have explored the following strategies:
- Utilizing our partner’s infrastructure (Edenia) for testing purposes instead of procuring or renting similar infrastructure, effectively economizing on infrastructure expenses.
- Implementing a component reuse strategy, incorporating certain components from our existing Tikuna project. This approach streamlines development efforts and reduces the need for additional resource allocation, thus contributing to cost savings.
Conflict of Interest
Does the person or persons proposing the grant have any conflicts of interest to disclose? (Please disclose here if you are a member of the GMC or if any member of the GMC would benefit directly financially from the grant).
N/A
Will the recipient of the grant, or any protocol or project in which the recipient has a vested interest (other than Rocket Pool), benefit financially if the grant is successful?
N/A