I wonder if DDoS could be solved (for static websites at least) by using P2P as a supplementary load balancer.
This could be set to only be enabled if load is approaching a certain percent of capacity that the servers/CDN are able to handle.
Once reaching that threshold, P2P would kick in, and existing visitors could serve static content to newer visitors using something like the WebRTC + Service Worker + IndexedDB combo that www.arc.io uses for their P2P CDN.
I’ve looked at P2P CDNs over the years and they seem to be solving the wrong problem. At scale bandwidth isn’t a problem it’s recognizing the DDoS and filtering it while letting through legitimate traffic to a dynamic website or API. That’s complex. Not saying it can’t be done in a P2P manner but it’s hard.
This could be set to only be enabled if load is approaching a certain percent of capacity that the servers/CDN are able to handle.
Once reaching that threshold, P2P would kick in, and existing visitors could serve static content to newer visitors using something like the WebRTC + Service Worker + IndexedDB combo that www.arc.io uses for their P2P CDN.
Thoughts?