Yggdrasil a private and decentralized IPv6 network implementation

Yggdrasil is an early stage implementation of an IPv6 network sIt is separated over the usual global network and is fully encrypted from one end to the other. It is light, self-organizing, multi-platform compatible and it allows virtually any IPv6-compliant application to communicate securely with other Yggdrasil nodes. Yggdrasil does not require you to have IPv6 internet connectivity; it also works over IPv4.

Yggdrasil develop a new routing concept to create a global decentralized network, where nodes can connect directly to each other in a mesh network mode (for example, via Wi-Fi or Bluetooth), or interact over existing IPv6 or IPv4 networks (network on network). The entire Yggdrasil network is seen not as a collection of disparate subnets, but as a single structured spanning tree, which has a "root", and each node has a parent and one or more descendants. Such a tree structure allows you to build a path to the destination node, relative to the source node, using the "locator" mechanism, which determines the optimal path to the node from the root.

The information about the tree is distributed among the nodes and is not stored centrally. A distributed hash table (DHT) is used to exchange routing information, with which a node can retrieve all information about the route to another node. The network itself only provides end-to-end encryption (passthrough nodes cannot determine content), but not anonymity (when connecting over the Internet, the peers with whom direct communication takes place can determine the actual IP address, so anonymity is proposed to connect the nodes via Tor or I2P).

It is observed that, although The project is in the alpha development stage, it is stable enough for everyday use, but it does not guarantee backward compatibility between versions. For Yggdrasil 0.4, the community maintains a set of services, including a platform to host Linux containers to host their sites, YaCy search engine, Matrix communication server, IRC server, DNS, VoIP system, BitTorrent tracker, endpoint map , IPFS gateway and proxy to access Tor, I2P and clearnet networks.

Currently lThe implementation is in its version 0.4 and in the new version a new routing scheme was implemented that is not backward compatible by Yggdrasil. Also when establishing TLS connections with nodes, key pinning is used. If there was no link during the connection, the resulting key will be assigned to the connection. If the binding has been established, but the key does not match, the connection will be rejected. TLS with key binding is defined as the recommended method for connecting to peers.

Another change that was made is that the code was completely redesigned and rewritten for routing and session management, which increased performance and operational reliability, especially for nodes that frequently switch pairs. Periodic key rotation is implemented in cryptographic sessions. Added support for source routing, which can be used to route custom IPv6 traffic. The Distributed Hash Table (DHT) architecture was redesigned and support for DHT-based routing was added. The implementation of routing algorithms has been moved to a separate library

IPv6 IP addresses are now generated from ed25519 public keys instead of your hash X25519, which will cause all internal IP addresses to change after upgrading to Yggdrasil 0.4.
Additional settings are provided to search for multicast peers.

Finally if you are interested in knowing more about it About this implementation, you want to know how to install Yggdrasil as well as how to configure or consult its documentation, you can do it from the link below. 


The content of the article adheres to our principles of editorial ethics. To report an error click here!.

Be the first to comment

Leave a Comment

Your email address will not be published.

*

*

  1. Responsible for the data: AB Internet Networks 2008 SL
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.