Distributed Repository for Software Packages Using Blockchain

Felipe Z. Da N. Costa; Ruy J. G. B. De Queiroz; Gustavo P. Bittencourt; Leopoldo Teixeira

doi:10.1109/ACCESS.2022.3216569

IEEE Access (Jan 2022)

Distributed Repository for Software Packages Using Blockchain

Felipe Z. Da N. Costa,
Ruy J. G. B. De Queiroz,
Gustavo P. Bittencourt,
Leopoldo Teixeira

Affiliations

Felipe Z. Da N. Costa: ORCiD; Centro de Informática, Universidade Federal de Pernambuco, Recife, Brazil
Ruy J. G. B. De Queiroz: Centro de Informática, Universidade Federal de Pernambuco, Recife, Brazil
Gustavo P. Bittencourt: ORCiD; Centro de Informática, Universidade Federal de Pernambuco, Recife, Brazil
Leopoldo Teixeira: ORCiD; Centro de Informática, Universidade Federal de Pernambuco, Recife, Brazil

DOI: https://doi.org/10.1109/ACCESS.2022.3216569
Journal volume & issue: Vol. 10
pp. 112502 – 112514

Abstract

Read online

A package repository is an essential piece of a software ecosystem. In FOSS, the software repositories are oftentimes hosted using limited donations, given the technical solutions adopted in the implementation. This work proposes a package repository using Blockchains with experiments and statistics based on a real-world scenario. The Blockchain described has its consensus algorithm crafted to befit the purpose of a package repository without financial appeal; Also, the proposed Blockchain keeps a compatible layer with the traditional repositories, easing its adoption. Furthermore, this work also presents a package search over peer-to-peer, computed on untrusted nodes, yet guaranteeing that the results are trusted. Finally, we present a functional Blockchain that cohesively exposes the PyPi catalog.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords