Decentralized virus scanner
A game of war for decentralized threat detection:
- One side plays the attacker
- The other side plays defence
- The field is a virtual machine
- The ombudsman is software that monitors the VMs health
- The ombudsman is concerned with what has happened to the VM
- Are key system files damaged?
- Have files been locked / crypted by malware?
- Are certain network resources hijacked?
- Attackers submit vectors to disrupt the VM
- Defenders submit vectors to protect the VM
- False positive and negative problem: design the ombudsman to accept random nonce values that impact the tests, i.e. measure performance at date stamp X rather than at a fixed date each time.
- Statistically validity becomes more apparent over time.
- Reward function is yet unknown: but it could be a dividend system based on stopping or evading vectors – I find the potential here fascinating
- I should note because the ombudsman can observe the result, it becomes objective in nature (like a true consensus system), and objective, goal-driven systems make for good cryptocurrencies
- Resulting cryptocurrency becomes an emergent virus scanner
- Security researchers could collaboratively update the ombudsman too based on reputation + stake-holder approval.
- Alternatively, the standard hard fork model would also work