Skip Navigation

Reticulum Network - Potentially viable global mesh internet

Reticulum is an elegant engineers approach to networking. It’s a complete replacement of the network stack, it’s entirely encrypted, and can communicate and can correctly organize global-scale mesh-networks over any connection >5b/s without the need for distributed hash tables, or any resource usage besides bandwidth. This makes it far lighter than GNUnet, and friendly to low-power, low bandwidth, embedded networks and devices.

This makes it viable as a global network, as it is super cheap to interact with. And it can run on any device, including your smartphone natively.

Bandwidth is a physical resource of the natural world. Reticulum is based on the principle of creating systems that (as far as is possible for a computer program) understand the physical limits of real-world resources, and manages them responsibly and intelligently, with well-thought out algorithms.

When that is ultimately not possible any more, human beings have to step in and expand capacity or make other thoughtful decisions on how to manage the available resources. I believe this is the most efficient, holistic and human-friendly approach to creating technologies that actually help us and better our lives.

  • someone from forums
18 comments
  • Is this still an overlay network, or an actual replacement?

    Reticulum is the cryptography-based networking stack for building local and wide-area networks with readily available hardware. Reticulum can continue to operate even in adverse conditions with very high latency and extremely low bandwidth.

    The vision of Reticulum is to allow anyone to operate their own sovereign communication networks, and to make it cheap and easy to cover vast areas with a myriad of independent, interconnectable and autonomous networks. Reticulum is Unstoppable Networks for The People.

    Sounds like an own network! Really cool!

  • Interesting project, thank you for introducing. :)

    I haven't tested anything, but only checked their specs (sadly I didn't find out how they manage without a distributed hashtable).

    Reticulum does not use source addresses. No packets transmitted include information about the address, place, machine or person they originated from.

    Sounds like mix networks like I2P and (to a lesser degree, since its role is proxying out to the Internet) like TOR. Mix networks send traffic using the Internet, so the bottom protocol layers (TCP and UDP) use IP addresses. Higher protocol layers (end to end messages) use cryptographic identifiers.

    There is no central control over the address space in Reticulum. Anyone can allocate as many addresses as they need, when they need them.

    Sounds like TOR and I2P, but people's convenience (easily resolving a name to an address) has created centralized resources on these nets, and will likely create similar resources on any network. An important matter is whether the central name resolver can retroactively revoke a name (in I2P for example, a name that has been already distributed is irrevocable, but you can refuse to distribute it to new nodes).

    Reticulum ensures end-to-end connectivity. Newly generated addresses become globally reachable in a matter of seconds to a few minutes.

    The same as aforementioned mix networks, but neither of them claims operability at 5 bits per second. Generally, a megabit connection is advised to meaninfully run a mix network, because you're not expected to freeload, but help mix traffic for others (this is how the anonymity arises).

    Addresses are self-sovereign and portable. Once an address has been created, it can be moved physically to another place in the network, and continue to be reachable.

    True for TOR and I2P. The address is a public key. You can move the machine with the private key anywhere, it will build a tunnel to accept incoming traffic at some other node.

    All communication is secured with strong, modern encryption by default.

    As it should.

    All encryption keys are ephemeral, and communication offers forward secrecy by default.

    In mix networks, the keys used as endpoint addresses are not ephemeral, but permanent. I'm not sure if I should take this statement at face value. If Alice wants to speak to Bob tomorrow, some identifier of Bob must not be ephemeral.

    It is not possible to establish unencrypted links in Reticulum networks.

    Same for mix networks.

    It is not possible to send unencrypted packets to any destinations in the network.

    Same.

    Destinations receiving unencrypted packets will drop them as invalid.

    Same.

    P.S.

    I also checked their interface list and it looks reasonable. Dropping an idea too: an interface for WiFi cards in monitor/inject mode might help some people. If the tool gets popular, I'm sure someone will build it. :)

18 comments