Re: Why should organization not be both orderer and peer?

Bram Dufour <bram.dufour8@...>

Thanks a lot Jason, I hadn't thought about those attacks yet.

But isn't it possible for the organizations with orderer to use the OU roles, set the following policies and just run orderer and peers within the same organization? Isn't this possible or do you still see some vulnerabilities with this approach?

Policies: &OrgPolicies
                Type: Signature
                Rule: "OR('org.orderer')"


And then also set the BlockValidation policy like this:

BlockValidation: Type: ImplicitMeta Rule: "ANY Orderer"


Thanks a lot in advance, it is a very interesting and important topic.

Join to automatically receive all group messages.