Re: Why should organization not be both orderer and peer?


Bram Dufour
 

Thanks a lot Jason, I hadn't thought about those attacks yet.

But isn't it possible for the organizations with orderer to use the OU roles, set the following policies and just run orderer and peers within the same organization? Isn't this possible or do you still see some vulnerabilities with this approach?

Policies: &OrgPolicies
            Orderer:
                Type: Signature
                Rule: "OR('org.orderer')"

```


And then also set the BlockValidation policy like this:

```
BlockValidation: Type: ImplicitMeta Rule: "ANY Orderer"

 

Thanks a lot in advance, it is a very interesting and important topic.

Join fabric@lists.hyperledger.org to automatically receive all group messages.