Download securityp2p

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
Document related concepts

Peering wikipedia , lookup

CAN bus wikipedia , lookup

Computer network wikipedia , lookup

IEEE 802.1aq wikipedia , lookup

Backpressure routing wikipedia , lookup

Airborne Networking wikipedia , lookup

Recursive InterNetwork Architecture (RINA) wikipedia , lookup

Routing wikipedia , lookup

Routing in delay-tolerant networking wikipedia , lookup

Transcript 
Security for Structured Peerto-peer Overlay Networks
By Miguel Castro et al. OSDI’02
Presented by Yun Mao in CIS640
CIS 640-2, Presenter: Yun Mao
1
Outline




Background & Model of P2P Network
How to achieve Secure Routing
How to use Secure Routing
Conclusions
CIS 640-2, Presenter: Yun Mao
2
What is the paper about and
not about

Not about traditional attacks




SYN flood, IP Spoofing, Buffer overflow, DoS
attacks on resource access
Keep in mind these attacks still work
About unique security problems in P2P
Goal: Secured Routing

Ensure that when a correct node sends a
message to a key, the message reaches all
correct replica roots for the key with very high
probability.
CIS 640-2, Presenter: Yun Mao
3
What’s new in P2P for security?

Nodes are MUCH more powerful



Assign nodeID themselves
Act as a router: has routing table,
forwarding messages..
Fully Decentralized



no authorization and authentication
You can trust nobody
Dynamic & self-organizing
CIS 640-2, Presenter: Yun Mao
4
Typical Routing Model

Routing


Pastry, Tapestry


Internet topology-aware in routing-table
Chord, CAN


Given a key, locate the corresponding node with
high probability
Routing-table constrained
Performance and security assumption:
nodeID uniform random distribution
CIS 640-2, Presenter: Yun Mao
5
Fault model




Byzantine failure model
N: number of total nodes
f: (0<=f<=1) the fraction of nodes that
may be faulty
c: (1/N<=c<=f) bound size of
independent coalitions
CIS 640-2, Presenter: Yun Mao
6
Network model



Assumption: no NAT, no DHCP
Network level and Overlay level
Adversary has complete control over
network-level communication
CIS 640-2, Presenter: Yun Mao
7
Possible Attacks



On nodeID assignment
On routing maintenance
On using routing table to forward
messages
CIS 640-2, Presenter: Yun Mao
8
(1) NodeID Assignment Attack

What if attacker can choose nodeID?




Surround a victim node
Partition a p2p network
become the key holder (root)
Self ID generation


Random (freenet), bad
hash IP (chord), bad(?)
CIS 640-2, Presenter: Yun Mao
9
Solution: Certified NodeIDs

Move ID generation to trusted CAs





Centralized->points of failure, vulnerable to
attacks, but survival under Sybil attack
Multiple CAs
working offline, open a connection when
needed (PKCS#10)
Include network address
Prevent DoS (not DoS on key lookup):
client puzzles or money
CIS 640-2, Presenter: Yun Mao
10
Review CA solutions


Not a new problem.
Pros


Weaker than those used to verify web
sites. Don’t have to bind with real-world
ID
Cons


Doesn’t work with small overlay network
Doesn’t work with dynamic nodeID (CAN
)
CIS 640-2, Presenter: Yun Mao
11
(2) Attack on maintaining routing table


Fake the closest node
Supply faulty routing update




Faulty info propagate
(1-f)*f+f*1>f
Routing algorithm related
Pastry VS Chord
CIS 640-2, Presenter: Yun Mao
12
Solution: Strong, verifiable constraints on
routing table entries

Use two routing tables: Pastry+Chord


First is efficient, second is for backup
Modified Algorithm of maintaining
routing table for constrained table

Build routing table from bootstrap node


“a set of diverse bootstrap nodes”, large
enough
How to set up?
CIS 640-2, Presenter: Yun Mao
13
Review: constraints on routing tables


Idea: trade complexity (2 routing tables) to both
security and performance, but…
Complexity implies low performance



Complexity implies insecurity



Maintain more routing tables
Expensive when building constrained routing table if b>1
unless more complex
How to guarantee bootstrap node secure?
Unknown bugs?
Faulty routing tables still diffuse: (1-f)*f+f*1>f
CIS 640-2, Presenter: Yun Mao
14
(3) Attack on forwarding

Simply ignore forwarding msgs



Failed if ANY one in routing is faulty
(1-f)h-1 No conspiring needed
Root node for a key maybe faulty


(1-f)h, h bounded to O(logN)
E.g. f=10%, successful routing=65%
CIS 640-2, Presenter: Yun Mao
15
Solution on forwarding


The most important part of Secure Routing
Basic Idea



Apply failure test to determine if routing worked
correctly.
If no, use redundant and/or iterative routing.
Goal – accomplish in reasonable
time/expense
CIS 640-2, Presenter: Yun Mao
16
Routing failure test

Timeout to detect ignoring routing msgs



How to select the threshold?
Doesn’t work if some nodes pretend to be the root
of key and the replica.
Observation on average density of nodeID

Comparing density of nodeIDs in the neighbor set
of the sender VS the density of nodeIDs close to
the replica roots of the destination key.
CIS 640-2, Presenter: Yun Mao
17
Failure test in Pastry

Density




average numerical distance u between
consecutive nodeIDs in the neighbor set.
Normal density: D/N, colluding density:
D/(c*N), D=2^128
Failure Test: urr <up * gamma
Fail cases:



False positive: alpha<=fun (y, k)
False negative: beta<=fun (y, k, c)
Independent of f, theoretically
CIS 640-2, Presenter: Yun Mao
18
Accuracy of detection

…
Theory
Simulation
CIS 640-2, Presenter: Yun Mao
19
Exceptions


Collect nodeID certificates that have left the
overlay  increase the density
Mix both faulty and good nodes.



Have to contact all prospective replicas
Tapestry 
nodeID suppression attack


Idea: make it hard to calculate on density
Solution: +alpha, -beta (assume more failure!)
CIS 640-2, Presenter: Yun Mao
20
Redundant routing


Invoked when failure test is positive
Route copies of the msgs over multiple routes
toward each of the dest key’s replica roots.


CAN & Tapestry


Expectation: at least one copy is correct
Ask the neighbors to forward the copies of the
message to the replica keys.
Pastry & Chord

anycast
CIS 640-2, Presenter: Yun Mao
21
Redundant Routing
Simulation
(30%, 0.999)
CIS 640-2, Presenter: Yun Mao
22
Checked iterative routing


Alternative to redundant routing
Iterative VS Recursive



R: cheap
I: more secure
Add hop tests to make iterative routing
stronger

Better for constraint routing table
CIS 640-2, Presenter: Yun Mao
23
Review on the solution



No perfect solution.
Protocol specific, esp. Bad for Tapestry
Tricky in failure test


But subject to more tricky attacks!
Performance is low


No explicit timeout threshold
Timeout+desity
computation+redudant/iterate routing
CIS 640-2, Presenter: Yun Mao
24
Now we have Secure Routing

Ensure that when a correct node sends
a message to a key, the message
reaches all correct replica roots for the
key with very high probability.


Slow, expensive
Use common routing as possible as we can
CIS 640-2, Presenter: Yun Mao
25
When to use secure routing

Joining


Inserting


Or adversary arrange for all replicas
Reading?


Or point to all faulty nodes
No. use self-certifying data.
Thanks god - no writing.
CIS 640-2, Presenter: Yun Mao
26
Summary and Comparison
NodeID
generation
Pastry
Chord
CA
CA??
Routing table Act like chord
maintenance
Nothing
changed
Forwarding
Failure test
Redundant routing
Iterate routing
Failure test
redundant routing
Iterate routing
CIS 640-2, Presenter: Yun Mao
27
Conclusions




Keep it as simple as possible
It is a hard problem – no perfect
solution now
Harder when conspiracy
Have to trust something

CAs, bootstrap nodes
CIS 640-2, Presenter: Yun Mao
28
Discussion: beyond this paper



Given a nodeID, how to actively detect
whether it is malicious or not?
How to block the faulty nodes?
Why not trust more?


by certification
by “credit history” or feedback
CIS 640-2, Presenter: Yun Mao
29
Related documents
CHAPTER 29 4&amp;5 REVIEW
CHAPTER 29 4&amp;5 REVIEW
Protocol Meeting Team Blue
Protocol Meeting Team Blue
Automatic Payment/Withdrawal Switch Form (Account Number)
Automatic Payment/Withdrawal Switch Form (Account Number)
B.E. Sixth Semester
B.E. Sixth Semester
Distributed Information System 2010 SUMMARY
Distributed Information System 2010 SUMMARY
Modeling and Evaluation of Fibre Channel Storage Area Networks
Modeling and Evaluation of Fibre Channel Storage Area Networks
Document
Document
HOW TO APPLY FOR FUNDING TO BRING PROFESSIONAL
HOW TO APPLY FOR FUNDING TO BRING PROFESSIONAL
Final Review
Final Review
PPT - P2
PPT - P2
Title Text - Drug Information Association
Title Text - Drug Information Association
Abstract
Abstract
Link - Indico
Link - Indico