# Downtime (DOW)
Downtime Risks:
IDRisk GroupRisk VectorsRisk Vector Description
DOW1InfrastructureExternal: Operational Failure of Cloud Service ProviderCloud Downtime, malfunction
DOW2InfrastructureOperational Failure of own bare metal set-up due to malfunction softwareMalfunction of software (e.g. validator client or third party software) leads to downtime
DOW3InfrastructureOperational Failure of own bare metal set-up due to malfunction hardwareMalfunction of hardware (e.g. physical network, computer system, CPU, RAM) leads to downtime
DOW4InfrastructureExternal: Operational Failure of own bare metal set-up due to people (ManMade)Employees are responsible for the downtime event (accidentally or intentionally)
DOW5InfrastructureExternal: Operational Failure of own bare metal set-up due to natural causesA natural event (e.g. earthquake, flood, hurricane,...) leads to an downtime
DOW6InfrastructureFailure to design for high availabilityHaving too few beacon nodes relative to validator clients, leading to:
- opportunity costs
- slashing on some networks
DOW7InfrastructureExternal: Internet connectivityLoss of infrastructure network connection due to:
- Sudden cloud outage
- Sudden internet failure in on-premise machines
- Accidental firewall change locks out access.
DOW8InfrastructureExternal: Power supplyPower Breakdown
DOW9InfrastructureExternal: Power supplyVolatile power supply damages infrastructure
DOW10InfrastructureExternal: DDOS attackSystems unresponsive, slowed down, and compromized due to buffer/stack overflow
DOW11SoftwareSoftware Bug in the Validator ClientDOWntime or accidental interpretation of dishonest behavior
DOW12SoftwareSoftware Bug in the Validator Client (Intentional or accidental) through software updateNew versions of a validator client that may cause errors that lead to downtime
(Supply chain attack)
DOW13SoftwareSoftware Bug in the Validator Client through software customization
New versions of a validator client may cause errors that lead to downtime
DOW14SoftwareSoftware Bug in third party software
Third party software failure can lead to downtime of the whole system
DOW15SoftwareLatency / Failure of relaysLatency / Failure of relays
DOW16PeopleMalicious Internal Employee (intentionally causes operational failure)An employee having too privileged access
DOW17PeopleMalicious Ex-Employee intentionally causes a downtime incidentA Ex-Employee can still have access to the system when his acces is not blocked or removed
DOW18PeopleMalicious External Hacker (intentionally causes operational failure)A hacker may find a way to overload the
system or shut parts of it down manually.
DOW19SoftwareRunning outdated validator softwareThe node operator os not updating its validator software
DOW20SoftwareValidator client update incompatible with IT systemSystem downtime after validator client update caused by incompatibility
--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://duck-initiative.gitbook.io/d.u.c.k.-knowledge-base/risk-framework/risks/downtime-dow.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.