Best practice for app developers. Self-hosting vs. trusted services

Hello, there is an ongoing debate around self hosting all critical infrastructure as an decentralized app developer versus trusting on hosted services. Looking at Ethereum, many decentralized app developers use Infura or Alchemy API.

At aeternity, developers often rely on the hosted compiler, hosted API gateway nodes and a hosted middleware API Server when building their first app. What is your opinion on this and how do you think a best practice should look like.

This is a screenshot from a discussion happened in one of the chats. I’d be happy to take it further from here

as i’m getting ignored in the chat-rooms i will just post this here as a conversation starter

1 Like

@nikita-fuchs i agree with you that users won’t be able to host all critical infrastructure. At bitcoin, startups like Casa try to advertise for a self hosted hardware bitcoin node at home to be on the totally safe side - i’m not sure if thats the right way to go but the fight between totally trust less and trusting some services will go on

https://keys.casa/lightning-bitcoin-node/

Edit: with local tx encoding you mean client side, correct?

1 Like

Among private computer users, it has forever been the case that non-techies relied on their techie friends which they happened to know to fix up their computers, or show them how to do something. Ok that’s anecdotal evidence (are there a peer-reviewed studies about this?), but I’ve seen lot’s of it, and otherwise would there be so many “No, I Will Not Fix Your Computer” t-shirts sold?

Anyway what I’m getting at: private usage of crypto might follow the same model. Techies might not only show their friends how to use stuff, but also offer them to run full nodes or compilers for them. Of course they could abuse it – but could have done so also in the classical computer-helper model, where they’d usually get admin access, and e.g. could have stolen data like bank account credentials. So in this model the question is, do you trust the person running the compiler for you*?

I think this is more likely of a scenario than the everybody-runs-their-full-node-at-home one, because most people don’t want to keep a computer running at home all the time, and also very many people don’t even have one to do so. E.g. here in Kenya, the vast majority of the population only owns a phone, and most among those owning laptops, will want to save the power cost.

* UTU will be happy to provide an incarnation of our trust protocol for this use case :wink:

1 Like