ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Secure routing for structured peer-to-peer overlay networks
Source Operating Systems Design and Implementation archive
Proceedings of the 5th symposium on Operating systems design and implementation

Due to copyright restrictions we are not able to make the PDFs for this conference available for downloading

 table of contents
Boston, Massachusetts
SESSION: Peer-to-peer infrastructure table of contents
Pages: 299 - 314  
Year of Publication: 2002
ISSN:0163-5980
Authors
Miguel Castro  Microsoft Research Ltd., Cambridge, UK
Peter Druschel  Rice University, Houston, TX
Ayalvadi Ganesh  Microsoft Research Ltd., Cambridge, UK
Antony Rowstron  Microsoft Research Ltd., Cambridge, UK
Dan S. Wallach  Rice University, Houston, TX
Sponsor
SIGOPS: ACM Special Interest Group on Operating Systems
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): n/a,   Downloads (12 Months): n/a,   Citation Count: 59
Additional Information:

abstract   references   cited by   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1060289.1060317
What is a DOI?

ABSTRACT

Structured peer-to-peer overlay networks provide a substrate for the construction of large-scale, decentralized applications, including distributed storage, group communication, and content distribution. These overlays are highly resilient; they can route messages correctly even when a large fraction of the nodes crash or the network partitions. But current overlays are not secure; even a small fraction of malicious nodes can prevent correct message delivery throughout the overlay. This problem is particularly serious in open peer-to-peer systems, where many diverse, autonomous parties without preexisting trust relationships wish to pool their resources. This paper studies attacks aimed at preventing correct message delivery in structured peer-to-peer overlays and presents defenses to these attacks. We describe and evaluate techniques that allow nodes to join the overlay, to maintain routing state, and to forward messages securely in the presence of malicious nodes.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
M. Bellare and P. Rogaway. The exact security of digital signatures- How to sign with RSA and Rabin. In Advances in Cryptology - EUROCRYPT 96, Lecture Notes in Computer Science, Vol. 1070. Springer-Verlag, 1996.
 
2
Steve Bellovin. Security aspects of Napster and Gnutella. In 2001 Usenix Annual Technical Conference, Boston, Massachusetts, June 2001. Invited talk.
 
3
Miguel Castro, Peter Druschel, Y. Charlie Hu, and Antony Rowstron. Exploiting network proximity in peer-to-peer overlay networks. Technical Report MSR-TR-2002-82, Microsoft Research, May 2002.
 
4
Miguel Castro , Barbara Liskov, Practical Byzantine fault tolerance, Proceedings of the third symposium on Operating systems design and implementation, p.173-186, February 1999, New Orleans, Louisiana, United States
 
5
Ian Clarke , Oskar Sandberg , Brandon Wiley , Theodore W. Hong, Freenet: a distributed anonymous information storage and retrieval system, International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability, p.46-66, January 2001, Berkeley, California, United States
 
6
Thomas T. Cormen , Charles E. Leiserson , Ronald L. Rivest, Introduction to algorithms, MIT Press, Cambridge, MA, 1990
7
Frank Dabek , M. Frans Kaashoek , David Karger , Robert Morris , Ion Stoica, Wide-area cooperative storage with CFS, Proceedings of the eighteenth ACM symposium on Operating systems principles, October 21-24, 2001, Banff, Alberta, Canada
 
8
Drew Dean and Adam Stubblefield. Using client puzzles to protect TLS. In 10th Usenix Security Symposium, pages 1--8, Washington, D.C., August 2001.
 
9
Roger Dingledine, Michael J. Freedman, and David Molnar. Accountability measures for peer-to-peer systems. In Peer-to-Peer: Harnessing the Power of Disruptive Technologies. O'Reilly and Associates, November 2000.
 
10
John R. Douceur, The Sybil Attack, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.251-260, March 07-08, 2002
11
M. P. Herlihy , J. M. Wing, Axioms for concurrent objects, Proceedings of the 14th ACM SIGACT-SIGPLAN symposium on Principles of programming languages, p.13-26, January 21-23, 1987, Munich, West Germany  [doi>10.1145/41625.41627]
12
Amir Herzberg , Markus Jakobsson , Stanislław Jarecki , Hugo Krawczyk , Moti Yung, Proactive public key and signature systems, Proceedings of the 4th ACM conference on Computer and communications security, p.100-110, April 01-04, 1997, Zurich, Switzerland  [doi>10.1145/266420.266442]
 
13
Ari Juels and John Brainard. Client puzzles: A cryptographic defense against connection depletion attacks. In Internet Society Symposium on Network and Distributed System Security (NDSS '99), pages 151--165, San Diego, California, February 1999.
 
14
Nancy A. Lynch , Dahlia Malkhi , David Ratajczak, Atomic Data Access in Distributed Hash Tables, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.295-305, March 07-08, 2002
15
Ralph C. Merkle, Secure communications over insecure channels, Communications of the ACM, v.21 n.4, p.294-299, April 1978  [doi>10.1145/359460.359473]
16
Sylvia Ratnasamy , Paul Francis , Mark Handley , Richard Karp , Scott Schenker, A scalable content-addressable network, Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications, p.161-172, August 2001, San Diego, California, United States
 
17
Antony I. T. Rowstron , Peter Druschel, Pastry: Scalable, Decentralized Object Location, and Routing for Large-Scale Peer-to-Peer Systems, Proceedings of the IFIP/ACM International Conference on Distributed Systems Platforms Heidelberg, p.329-350, November 12-16, 2001
18
Antony Rowstron , Peter Druschel, Storage management and caching in PAST, a large-scale, persistent peer-to-peer storage utility, Proceedings of the eighteenth ACM symposium on Operating systems principles, October 21-24, 2001, Banff, Alberta, Canada
 
19
Emil Sit , Robert Morris, Security Considerations for Peer-to-Peer Distributed Hash Tables, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.261-269, March 07-08, 2002
20
Ion Stoica , Robert Morris , David Karger , M. Frans Kaashoek , Hari Balakrishnan, Chord: A scalable peer-to-peer lookup service for internet applications, Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications, p.149-160, August 2001, San Diego, California, United States
 
21
Ben Y. Zhao , John D. Kubiatowicz , Anthony D. Joseph, Tapestry: An Infrastructure for Fault-tolerant Wide-area Location and, University of California at Berkeley, Berkeley, CA, 2001

CITED BY  59
Rongmei Zhang , Y. Charlie Hu, Borg: a hybrid protocol for scalable application-level multicast in peer-to-peer networks, Proceedings of the 13th international workshop on Network and operating systems support for digital audio and video, June 01-03, 2003, Monterey, CA, USA
Landon P. Cox , Christopher D. Murray , Brian D. Noble, Pastiche: making backup cheap and easy, ACM SIGOPS Operating Systems Review, v.36 n.SI, Winter 2002
Miguel Castro , Manuel Costa , Antony Rowstron, Should we build Gnutella on a structured overlay?, ACM SIGCOMM Computer Communication Review, v.34 n.1, January 2004
Venugopalan Ramasubramanian , Emin Gün Sirer, The design and implementation of a next generation name service for the internet, ACM SIGCOMM Computer Communication Review, v.34 n.4, October 2004
Stephanos Androutsellis-Theotokis , Diomidis Spinellis, A survey of peer-to-peer content distribution technologies, ACM Computing Surveys (CSUR), v.36 n.4, p.335-371, December 2004
Mudhakar Srivatsa , Li Xiong , Ling Liu, TrustGuard: countering vulnerabilities in reputation management for decentralized overlay networks, Proceedings of the 14th international conference on World Wide Web, May 10-14, 2005, Chiba, Japan
D. Dumitriu , E. Knightly , A. Kuzmanovic , I. Stoica , W. Zwaenepoel, Denial-of-service resilience in peer-to-peer file sharing systems, ACM SIGMETRICS Performance Evaluation Review, v.33 n.1, June 2005
Manuel Costa , Jon Crowcroft , Miguel Castro , Antony Rowstron , Lidong Zhou , Lintao Zhang , Paul Barham, Vigilante: end-to-end containment of internet worms, ACM SIGOPS Operating Systems Review, v.39 n.5, December 2005
Christian Scheideler, How to spread adversarial nodes?: rotate!, Proceedings of the thirty-seventh annual ACM symposium on Theory of computing, May 22-24, 2005, Baltimore, MD, USA
Kaouthar Sethom , Khaled Masmoudi , Hossam Afifi, A secure P2P architecture for location management, Proceedings of the 6th international conference on Mobile data management, May 09-13, 2005, Ayia Napa, Cyprus
Landon P. Cox , Christopher D. Murray , Brian D. Noble, Pastiche: making backup cheap and easy, Proceedings of the 5th symposium on Operating systems design and implementation

Due to copyright restrictions we are not able to make the PDFs for this conference available for downloading

, December 09-11, 2002, Boston, Massachusetts
Laurent Massoulié , Erwan Le Merrer , Anne-Marie Kermarrec , Ayalvadi Ganesh, Peer counting and sampling in overlay networks: random walk methods, Proceedings of the twenty-fifth annual ACM symposium on Principles of distributed computing, July 23-26, 2006, Denver, Colorado, USA
Sergio Marti , Hector Garcia-Molina, Taxonomy of trust: categorizing P2P reputation systems, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.50 n.4, p.472-484, 15 March 2006
Petros Maniatis , TJ Giuli , Mema Roussopoulos , David S. H. Rosenthal , Mary Baker, Impeding attrition attacks in P2P systems, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, September 19-22, 2004, Leuven, Belgium
Martín Abadi , Boon Thau Loo, Towards a declarative language and system for secure networking, Proceedings of the 3rd USENIX international workshop on Networking meets databases, p.1-6, April 10, 2007, Cambridge, MA
Praveen Rao , Justin Cappos , Varun Khare , Bongki Moon , Beichuan Zhang, Net-χ: unified data-centric internet services, Proceedings of the 3rd USENIX international workshop on Networking meets databases, p.1-6, April 10, 2007, Cambridge, MA
Micah Sherr , Boon Thau Loo , Matt Blaze, Towards application-aware anonymous routing, Proceedings of the 2nd USENIX workshop on Hot topics in security, p.1-5, August 07, 2007, Boston, MA
Emin Gün Sirer , Sharad Goel , Mark Robson , Doǧan Engin, Eluding carnivores: file sharing with strong anonymity, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, September 19-22, 2004, Leuven, Belgium
Bo Zhang , T. S. Eugene Ng , Animesh Nandi , Rudolf Riedi , Peter Druschel , Guohui Wang, Measurement based analysis, modeling, and synthesis of the internet delay space, Proceedings of the 6th ACM SIGCOMM on Internet measurement, October 25-27, 2006, Rio de Janeriro, Brazil
Weichao Wang , Aidong Lu, Visualization assisted detection of sybil attacks in wireless networks, Proceedings of the 3rd international workshop on Visualization for computer security, November 03-03, 2006, Alexandria, Virginia, USA
Kevin Walsh , Emin Gün Sirer, Experience with an object reputation system for peer-to-peer filesharing, Proceedings of the 3rd conference on 3rd Symposium on Networked Systems Design & Implementation, p.1-1, May 08-10, 2006, San Jose, CA
Alan Mislove , Gaurav Oberoi , Ansley Post , Charles Reis , Peter Druschel , Dan S. Wallach, AP3: cooperative, decentralized anonymous communication, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, p.30-es, September 19-22, 2004, Leuven, Belgium
Baruch Awerbuch , Christian Scheideler, Towards a scalable and robust DHT, Proceedings of the eighteenth annual ACM symposium on Parallelism in algorithms and architectures, July 30-August 02, 2006, Cambridge, Massachusetts, USA
Atul Singh , Miguel Castro , Peter Druschel , Antony Rowstron, Defending against eclipse attacks on overlay networks, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, September 19-22, 2004, Leuven, Belgium
Mudhakar Srivatsa , Ling Liu, Securing decentralized reputation management using TrustGuard, Journal of Parallel and Distributed Computing, v.66 n.9, p.1217-1232, September 2006
Bogdan C. Popescu , Bruno Crispo , Andrew S. Tanenbaum , Arno Bakker, Design and implementation of a secure wide-area object middleware, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.51 n.10, p.2484-2513, July, 2007
Alan Mislove , Ansley Post , Andreas Haeberlen , Peter Druschel, Experiences in building and operating ePOST, a reliable peer-to-peer application, ACM SIGOPS Operating Systems Review, v.40 n.4, October 2006
Håvard Johansen , André Allavena , Robbert van Renesse, Fireflies: scalable support for intrusion-tolerant network overlays, ACM SIGOPS Operating Systems Review, v.40 n.4, October 2006
Verdi March , Yong Meng Teo , Xianbing Wang, DGRID: a DHT-based resource indexing and discovery scheme for computational grids, Proceedings of the fifth Australasian symposium on ACSW frontiers, January 30-February 02, 2007, Ballarat, Australia
Matthew Caesar , Tyson Condie , Jayanthkumar Kannan , Karthik Lakshminarayanan , Ion Stoica, ROFL: routing on flat labels, ACM SIGCOMM Computer Communication Review, v.36 n.4, October 2006
Matthew Caesar , Miguel Castro , Edmund B. Nightingale , Greg O'Shea , Antony Rowstron, Virtual ring routing: network routing inspired by DHTs, ACM SIGCOMM Computer Communication Review, v.36 n.4, October 2006
Amy Beth Corman , Peter Schachte , Vanessa Teague, QUIP: a protocol for securing content in peer-to-peer publish/subscribe overlay networks, Proceedings of the thirtieth Australasian conference on Computer science, p.35-40, January 30-February 02, 2007, Ballarat, Victoria, Australia
Kevin Bauer , Damon McCoy , Dirk Grunwald , Tadayoshi Kohno , Douglas Sicker, Low-resource routing attacks against tor, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
Rodrigo Rodrigues , Petr Kouznetsov , Bobby Bhattacharjee, Large-scale byzantine fault tolerance: safe but not always live, Proceedings of the 3rd conference on Third Workshop on Hot Topics in System Dependability, p.17-17, June 26, 2007, Edinburgh, UK
Alex Brodsky , Dmitry Brodsky, A distributed content independent method for spam detection, Proceedings of the first conference on First Workshop on Hot Topics in Understanding Botnets, p.3-3, April 10, 2007, Cambridge, MA
Hong Tang , Tao Yang, An Efficient Data Location Protocol for Self.organizing Storage Clusters, Proceedings of the 2003 ACM/IEEE conference on Supercomputing, p.53, November 15-21, 2003
Min Cai , Ann Chervenak , Martin Frank, A Peer-to-Peer Replica Location Service Based on a Distributed Hash Table, Proceedings of the 2004 ACM/IEEE conference on Supercomputing, p.56, November 06-12, 2004
Chi Ho , Robbert van Renesse , Mark Bickford , Danny Dolev, Nysiad: practical protocol transformation to tolerate Byzantine failures, Proceedings of the 5th USENIX Symposium on Networked Systems Design and Implementation, p.175-188, April 16-18, 2008, San Francisco, California
Karthik Lakshminarayanan , Daniel Adkins , Adrian Perrig , Ion Stoica, Securing user-controlled routing infrastructures, IEEE/ACM Transactions on Networking (TON), v.16 n.3, p.549-561, June 2008
Andrew MacQuire , Andrew Brampton , Idris A. Rai , Nicholas J. P. Race , Laurent Mathy, Authentication in stealth distributed hash tables, Journal of Systems Architecture: the EUROMICRO Journal, v.54 n.6, p.607-618, June, 2008
Baruch Awerbuch , Christian Scheideler, Robust random number generation for peer-to-peer systems, Theoretical Computer Science, v.410 n.6-7, p.453-466, February, 2009
Andreas Haeberlen , Petr Kouznetsov , Peter Druschel, PeerReview: practical accountability for distributed systems, ACM SIGOPS Operating Systems Review, v.41 n.6, December 2007
Luciano Paschoal Gaspary , Marinho P. Barcellos , André Detsch , Rodolfo S. Antunes, Flexible security in peer-to-peer applications: Enabling new opportunities beyond file sharing, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.51 n.17, p.4797-4815, December, 2007
Moritz Steiner , Taoufik En-Najjary , Ernst W. Biersack, Exploiting KAD: possible uses and misuses, ACM SIGCOMM Computer Communication Review, v.37 n.5, October 2007
Divyakant Agrawal , Amr El Abbadi , Subhash Suri, Attribute-based access to distributed data over P2P networks, International Journal of Computational Science and Engineering, v.3 n.2, p.112-123, November 2007
David John Zage , Cristina Nita-Rotaru, On the accuracy of decentralized virtual coordinate systems in adversarial networks, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA
Nouha Oualha , Yves Roudier, Reputation and audits for self-organizing storage, Proceedings of the workshop on Security in Opportunistic and SOCial networks, September 22-25, 2008, Istanbul, Turkey
Alex Brodsky, Our brothers' keepers, Proceedings of the twenty-seventh ACM symposium on Principles of distributed computing, August 18-21, 2008, Toronto, Canada
Peng Wang , James Tyra , Eric Chan-Tin , Tyson Malchow , Denis Foo Kune , Nicholas Hopper , Yongdae Kim, Attacking the Kad network, Proceedings of the 4th international conference on Security and privacy in communication netowrks, September 22-25, 2008, Istanbul, Turkey
Min Cai , Kai Hwang , Jianping Pan , Christos Papadopoulos, WormShield: Fast Worm Signature Generation with Distributed Fingerprint Aggregation, IEEE Transactions on Dependable and Secure Computing, v.4 n.2, p.88-104, April 2007
Chris Lesniewski-Laas, A Sybil-proof one-hop DHT, Proceedings of the 1st workshop on Social network systems, p.19-24, April 01-01, 2008, Glasgow, Scotland
Prateek Mittal , Nikita Borisov, Information leaks in structured peer-to-peer anonymous communication systems, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Aaron Walters , David Zage , Cristina Nita Rotaru, A framework for mitigating attacks against measurement-based adaptation mechanisms in unstructured multicast overlay networks, IEEE/ACM Transactions on Networking (TON), v.16 n.6, p.1434-1446, December 2008
Manuel Costa , Jon Crowcroft , Miguel Castro , Antony Rowstron , Lidong Zhou , Lintao Zhang , Paul Barham, Vigilante: End-to-end containment of Internet worm epidemics, ACM Transactions on Computer Systems (TOCS), v.26 n.4, p.1-68, December 2008
Animesh Nandi , Tsuen-Wan Johnny Ngan , Atul Singh , Peter Druschel , Dan S. Wallach, Scrivener: providing incentives in cooperative content distribution systems, Proceedings of the ACM/IFIP/USENIX 2005 International Conference on Middleware, p.270-291, November 01-01, 2005, Grenoble, France
Georgios Smaragdakis , Vassilis Lekakis , Nikolaos Laoutaris , Azer Bestavros , John W. Byers , Mema Roussopoulos, EGOIST: overlay routing using selfish neighbor selection, Proceedings of the 2008 ACM CoNEXT Conference, p.1-12, December 09-12, 2008, Madrid, Spain
Keith Needels , Minseok Kwon, Secure routing in peer-to-peer distributed hash tables, Proceedings of the 2009 ACM symposium on Applied Computing, March 08-12, 2009, Honolulu, Hawaii
Ryan S. Peterson , Emin Gün Sirer, Antfarm: efficient content distribution with managed swarms, Proceedings of the 6th USENIX symposium on Networked systems design and implementation, p.107-122, April 22-24, 2009, Boston, Massachusetts
Edward Bortnikov , Maxim Gurevich , Idit Keidar , Gabriel Kliot , Alexander Shraer, Brahms: Byzantine resilient random membership sampling, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.53 n.13, p.2340-2359, August, 2009
Collaborative Colleagues:
Miguel Castro: colleagues
Peter Druschel: colleagues
Ayalvadi Ganesh: colleagues
Antony Rowstron: colleagues
Dan S. Wallach: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player