View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0007847||Taler||wallet-core||public||2023-05-23 17:24||2023-05-23 17:24|
|Reporter||sebasjm||Assigned To||Florian Dold|
|Priority||high||Severity||major||Reproducibility||unable to reproduce|
|Product Version||git (master)|
|Summary||0007847: DoS when all wallet try to refresh coins at the same time|
|Description||Instead of wallet doing refresh exactly 3 months before expiration time, it should refresh based on a random value close to 3 months|
> The refresh transaction is automatically triggered by the wallet software 3 months before the end of the validity of a coin. Especially if Exchange
> operators charge refresh fees, the fact that a fee may automatically be charged in the background without user interaction is likely particularly
> difficult to explain.
> But that also means that "3 months before the end of the validity of a coin" will be the same for every wallet since the beginning,
> isn't this a self-DOS waiting for us?
> I mean, all the wallet with all those coins will try to refresh at the same time.
> Maybe refresh time should random time based in a normal distribution with mean expiration_time - 2 month and std_dev 1 month
|Tags||No tags attached.|