pull down to refresh
Great questions,
- The system is designed to distribute inference requests across the network, so there is no such thing as an "untrusted node" in this context because neither there is a system of trust in place, so you could say that all nodes should be considered "untrusted" by definition. Like use them for general inference but never to be used to handle API secrets and such which is also always valid good practice for any other "cloud provider" anyway.
Nodes are just processing random inference from random sources so the inference queries are potentially visible from the node runner's point of view, just like they already are when using any cloud inference today on all the main platforms, the advantage here is that there is no direct connection between the identity of the inference buyer and the node runner, like you would have on a centralized platform.
- There is already a Karma system for nodes that are contributing to the free tier, this could be a great feature request addition, thanks!
I'll do some research to see if there is a way to embed encryption at some levels on the inference stack ...
Both your question are very good and thoughtful thanks for contributing! I'm new on stacker news, let me see if I can find a way to send some Sats your way : )
How do you prevent untrusted nodes from decoding and logging the prompt sent by the users?
How do you prevent untrusted nodes from sending garbage outputs just to receive the payout?