Sure… I think there are two paths, and then maybe a middle ground. Current inertia is on the middle ground.
So one extreme is sort of the ‘bittorrent utopia vision’ and that involves strong crypto, minimal fragmentation, possibly deduplication, streaming, full mobile support, and some of the more ‘out there’ ideas I’ve proposed like encrypted distributed deduptlicated filesystems , convergent encryption compatible with bittorrent (ie.maybe integration and/or block deduplication with bittorrent or Tor users want that, whatever).
Then the other extreme is that everything you have to set up yourself, there is no central point of failure, no central servers, encrypted endponts and transport, everything is essentially your own VPN plus the security of strong crypto, etc, and it’s just distributed sync and nothing else. But it’s private and it’s good at moving files around, and everything is higher security but maybe a little less convenient , and with less features.
Right now, there’s a little of both of these (the networks are private, transport is encrypted, but there is a global discovery server ).
Anyway I think part of this comes down to personal preference, and really the smat decision is to watch carefully what users are saying and what features they want . No reason in solving a problem that doesn’t exist.
As for the discovery server, from my current understanding, use of the discovery server doesn’t present a major security threat unless the node is malicious . Even so, even if syncthing discovery server got hacked, an attack beyond publishing a list of IPs would be a bit impractical , and would require attacking your home computer as well with dns poisoning or arp spoofing as wel I think to exploit the structure and read your data.