Evaluate the exposure of trusted RPC port in production env

[Kailai-Wang]

In order for privileged users to query the storage via RPC, integritee has built-in support for RPC requests of trusted state. We should evaluate:

• is it safe to keep it open in production env?
• if so, which TrustedGetter should we have?

[Kailai-Wang]

The pros and cons are obvious IMO:

++ you get the synchronous responses for your trustedGetter queries - very F/E friendly
-- the worker IP/port gets exposed, attackers might try ddos to bring the service down => maybe we'll have some non-validateer nodes

[jingleizhang]

the worker IP/port gets exposed, attackers might try ddos to bring the service down

We can put an AWS LoadBalance or even an Nginx reverse proxy in front of those workers to protect them.

[jingleizhang]

Does TrustedGetter have any auth mechanism? For example, does the user still need to sign a transaction to call the rpc?

[Kailai-Wang]

Does TrustedGetter have any auth mechanism? For example, does the user still need to sign a transaction to call the rpc?

It does. It requires a signature from the user to prove its identity

[jingleizhang]

Get it. I think making the trusted RPC port be exposed to F/E is acceptable.

[github-actions]

❗ This issue is stale because it has been open for 60 days with no activity.
Remove Stale label or update it, otherwise this issue will be closed in 7 days.
@litentry/parachain

[github-actions]

❗ This issue is stale because it has been open for 60 days with no activity.
Remove Stale label or update it, otherwise this issue will be closed in 7 days.
@litentry/parachain