Tail risk as I understand it is going to be fun. If your staked nodes lose connectivity (or your pool's) the network can penalize them by slashing the ETH and the stake, right? So after everyone centralizes on a few nodes in the main providers, aren't bad actors heavily incentivized to attack common infra to remove $/power/currency/voting from others and thus shrink the chain?
I don't think the network can figure out an "oops, AWS or Comcast went out; my nodes at home or in the cloud shouldn't get slashed" vs "lets sabotage an ISP or network for enough time to trigger penalties and repeat it".
You are on point. The solution is (and people do it today) don't run backup nodes, or you will risk getting slashed. Your penalty for missing your vote is very mild - basically not earning the reward for the round.
Yup and accordingly PoS devs have explicitly stated this incentivizes stakers to be spread out, and not only on infrastructure but software, as there are multiple client implementations.
I don't think the network can figure out an "oops, AWS or Comcast went out; my nodes at home or in the cloud shouldn't get slashed" vs "lets sabotage an ISP or network for enough time to trigger penalties and repeat it".