多成员资源管理工具
[英]Multi-member governance tools for resources
问题描述
For a consortium with multiple enterprise parties operating a permissioned blockchain, how does governance of the shared infrastructure work with Kaleido? 
对于拥有多个运行许可链的企业方的财团,共享基础架构的治理如何与Kaleido一起使用?
I assume that one party can launch the blockchain platform (with a fixed set of nodes), invite members, give invited members limited capabilities to manage the shared resources (eg they can set up private channels and invite other members, and perhaps add/remove their own nodes/peers?). 我假设一方可以启动区块链平台(具有固定的节点集),邀请成员,为受邀成员提供有限的功能来管理共享资源(例如,他们可以建立私有渠道并邀请其他成员,以及可能添加/删除)他们自己的节点/对等?)。
Does the party who launches the blockchain consortium instance have more "powers" than invited members (eg which AWS region to deploy to)? 启动区块链财团实例的一方是否具有比受邀成员更多的“权力”(例如,要部署到哪个AWS区域)?
Can an invited member add more peers or remote nodes than the rest of the consortium, and then perform something like a 51% attack? 受邀成员能否添加比联盟中其他成员更多的对等方或远程节点,然后执行51%的攻击?
Can payments be split between consortium members? 可以在财团成员之间分配付款吗?
The encrypted storage: how is this governed between multiple members of a consortium? 加密存储:在联盟的多个成员之间如何管理?
I would appreciate any feedback. 我将不胜感激任何反馈。
Kind Regards, Zaid 亲切的问候,Zaid
1 个解决方案
解决方案1
0 2018-11-12 13:24:51
Does the party who launches the blockchain consortium instance have more "powers" than invited members (eg which AWS region to deploy to)?
In the current open beta functionality, Kaleido does exposed the ability for the original creator of a consortium/environment to delete it. 在当前的开放测试版功能中,Kaleido确实向财团/环境的原始创建者公开了删除它的功能。 Including all nodes owned by all members. 包括所有成员拥有的所有节点。 This is a convenience feature for PoC stage consortium. 这是PoC阶段财团的便利功能。 Please drop support@kaleido.io an email note directly if you are at a stage with a project where you need to discuss a fully decentralized governance model where this ability is removed. 如果您正处于一个项目的阶段,需要讨论一个完全去中心化的治理模型,而该能力已被删除,请直接发送电子邮件至support@kaleido.io。
Can an invited member add more peers or remote nodes than the rest of the consortium, and then perform something like a 51% attack?
Each consensus algorithm has different byzantine fault tolerance characteristics, and you can read about them here: https://kaleido.io/consensus-algorithms-poa-ibft-or-raft/ 每个共识算法都有不同的拜占庭容错特性,您可以在此处阅读有关它们的信息: https : //kaleido.io/consensus-algorithms-poa-ibft-or-raft/
In the current open beta, members invited/permissioned into the private chain are able to add multiple nodes that participate in forming consensus (Clique signers / IBFT validators). 在当前的公开测试版中,受邀/被允许进入私有链的成员能够添加参与形成共识的多个节点(Clique签名者/ IBFT验证者)。 Again please contact Kaledio if you have specific requirements in this area. 如果您在这方面有特殊要求,请再次与Kaledio联系。
Can payments be split between consortium members?
Kaleido is not currently charging for the open beta. Kaleido目前不对公开测试版收费。 However, the ownership model of the Kaleido cloud resources, is that each Kaleido organization owns its own nodes. 但是,Kaleido云资源的所有权模型是每个Kaleido组织都拥有自己的节点。 Each member running nodes in a Kaleido private chain has the control over the lifecycle and operations of their own nodes. 在Kaleido私有链中运行节点的每个成员都可以控制自己节点的生命周期和操作。 As such, it would follow that each participant would pay for their own nodes in such a model. 因此,在这种模型中,每个参与者都将为自己的节点付费。
The encrypted storage: how is this governed between multiple members of a consortium?
The Kaleido tenancy model is described here: 这里描述了Kaleido租赁模型:
https://docs.kaleido.io/getting-started/overview/kaleido-tenancy-model/ https://docs.kaleido.io/getting-started/overview/kaleido-tenancy-model/
A further option for encryption of sensitive key materials, is to use use per-tenant master encryption keys stored outside of the Kaleido platform in the AWS Key Management Service (KMS): 加密敏感密钥材料的另一种选择是使用在AWS密钥管理服务(KMS)中存储在Kaleido平台之外的按租户主加密密钥:
https://kaleido.io/why-your-keys-are-safe-in-kaleido/ https://kaleido.io/why-your-keys-are-safe-in-kaleido/
If you are interested in further details of the virtualization technologies Kaleido uses to dedicate isolated storage to each node, please reach out directly to support. 如果您对Kaleido用于将隔离存储专用于每个节点的虚拟化技术的更多细节感兴趣,请直接与支持部门联系。
Many thanks for your questions, and I hope this response gives some additional clarity on the features available in the Kaleido open beta. 非常感谢您提出问题,我希望这一答复能使Kaleido开放测试版中的可用功能更加清晰。 Please do reach out to support@kaleido.io directly if you'd like to learn more. 如果您想了解更多信息,请直接联系support@kaleido.io。
Regards, Peter 问候,彼得
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.