Presentation is loading. Please wait.

Presentation is loading. Please wait.

March 2008IETF 71 (P2PSIP)1 Data types in P2P systems Henning Schulzrinne Columbia University.

Published byChad Whitehead Modified over 8 years ago

Similar presentations

Presentation on theme: "March 2008IETF 71 (P2PSIP)1 Data types in P2P systems Henning Schulzrinne Columbia University."— Presentation transcript:

1 March 2008IETF 71 (P2PSIP)1 Data types in P2P systems Henning Schulzrinne Columbia University

2 March 2008IETF 71 (P2PSIP)2 Data issues What do we store and fetch? How do we protect it? –separate topic: CMS, homebrew,... Analogies –file system (meta data, ACL, blob) some had/have data types (e.g., VMS records) –hash libraries (e.g., hcreate()) –database libraries (e.g., gdbm) –language features such as arrays and dictionaries Tcl, Perl, PHP, Python, Ruby,... data ID crypto wrapper

3 March 2008IETF 71 (P2PSIP)3 Requirements Need to be able to store any data item –of reasonable size New types MUST NOT require rewriting node software –otherwise, little chance to generalize ID (“database key”) must allow non-AOR values –otherwise, doesn’t generalize to VoD and other uses Allow both “standard” data objects and application-specific ones –e.g., SIP registration records and vendor-specific configuration data or I-D 00 experiments Provide access control –e.g., only creator can read –should work with semi-trusted nodes Provide policy control per node or overlay –e.g., maximum size of objects

4 March 2008IETF 71 (P2PSIP)4 Data typing RELOAD -03: 32-bit integer with some TBD allocation scheme –e.g., similar to IANA ports registry compromise between space efficiency and extensibility a “usage” may define one or more data types

5 March 2008IETF 71 (P2PSIP)5 Multiple objects with same “key” (ID) What happens if there’s a hash collision? Possibilities –global space {“egg”} is may cause DOS attacks if ID = AOR –creator e.g., ID space could be local to creator {“egg”, alice} and {“egg”, bob} are two different objects allows “only AOR can register AOR” policy –data type {“egg”, 17, alice} and {“egg”, 42, alice} are two different objects –auxiliary data {“egg”, 17, alice, label1} and {“egg”, 17, alice, label2} are two different objects

6 March 2008IETF 71 (P2PSIP)6 Access control & versioning Basic access control policy: only owner (= creator) can replace (or delete) object –enforced by peer –can’t prevent peer from disobeying policy Do we need more elaborate policies? –similar to Unix ACLs or chmod bits? –unbounded complexity

7 March 2008IETF 71 (P2PSIP)7 Versioning & timestamps Do objects have timestamps? Option 1: Just metadata Option 2: Cannot replace newer object with older one –prevents replay attack –does not require synchronized clock in overlay as long as all instances of owner have roughly synchronized clocks or fetch current value

8 March 2008IETF 71 (P2PSIP)8 Compound data structures Should there be compound data structures? Options (at least) But also STL (see next slide) Scripting languages (PHP, Tcl, Ruby,...) Need data structures AND operations –e.g., enumeration, traversal (iterator), insertion at beginning/end,... Interaction with policies and replication

9 March 2008IETF 71 (P2PSIP)9 Example: STL containers Sequentialvectorfast inserts at end listinserts anywhere dequeinserts start & end Associativemultisetduplicates allowed setno duplicates multimap1-to-many map1-to-1 AdapterstackFILO queueFIFO priority_queuesorted order

10 March 2008IETF 71 (P2PSIP)10 Example: Tcl set name(first) "Mary” Fake two-dimensional arrays: name(a,b) No ordering guarantees –PHP differs, for example (insertion order)

11 March 2008IETF 71 (P2PSIP)11 Proposed simple type Uniquely identified by H(data) –within {“ID”, owner, type} Operations –replace –list all {“ID”, owner, type} hashes (?)

12 March 2008IETF 71 (P2PSIP)12 Other proposals Three types: –singleton –numeric array –dictionary Issues that need to be resolved: –operations beyond single-element –replication –access control for [x] separate from data?

13 March 2008IETF 71 (P2PSIP)13 Example applications registrations –multiple handsets for same AOR voicemail –may generally use a server (announcement), not just storage –multiple writers? –but probably want to hide meta data TURN servers –possibly indexed by some location indication

14 March 2008IETF 71 (P2PSIP)14 Summary Data model independent of DHT and protocol But if more complicated, may need additional operations beyond store & fetch –or at least additional sub-operations (“last”) Security issues -- what gets exposed to the (untrusted) server?

Download ppt "March 2008IETF 71 (P2PSIP)1 Data types in P2P systems Henning Schulzrinne Columbia University."

Similar presentations

Yunling Wang VoIP Security COMS 4995 Nov 24, 2008 XCAP The Extensible Markup Language (XML) Configuration Access Protocol (XCAP)

Yunling Wang VoIP Security COMS 4995 Nov 24, 2008 XCAP The Extensible Markup Language (XML) Configuration Access Protocol (XCAP)
CS4432: Database Systems II Buffer Manager 1. 2 Covered in week 1.

CS4432: Database Systems II Buffer Manager 1. 2 Covered in week 1.
Csci5233 Computer Security1 Bishop: Chapter 10 (Cont.) Key Management: Certificates.

Csci5233 Computer Security1 Bishop: Chapter 10 (Cont.) Key Management: Certificates.
 Alexandra Constantin  James Cook  Anindya De Computer Science, UC Berkeley.

 Alexandra Constantin  James Cook  Anindya De Computer Science, UC Berkeley.
Address Settlement by Peer to Peer (ASP) Jonathan Rosenberg Cullen Jennings Eric Rescorla.

Address Settlement by Peer to Peer (ASP) Jonathan Rosenberg Cullen Jennings Eric Rescorla.
Scope Discussion Seems to be a good deal of interest in moving this toward a working group If we want to work toward this, we need to have a clearly defined.

Scope Discussion Seems to be a good deal of interest in moving this toward a working group If we want to work toward this, we need to have a clearly defined.
1 Chapter 11: File-System Interface  File Concept  Access Methods  Directory Structure  File System Mounting  File Sharing  Protection  Chapter.

1 Chapter 11: File-System Interface  File Concept  Access Methods  Directory Structure  File System Mounting  File Sharing  Protection  Chapter.
File Management Chapter 12. File Management A file is a named entity used to save results from a program or provide data to a program. Access control.

File Management Chapter 12. File Management A file is a named entity used to save results from a program or provide data to a program. Access control.
1 Foundations of Software Design Fall 2002 Marti Hearst Lecture 18: Hash Tables.

1 Foundations of Software Design Fall 2002 Marti Hearst Lecture 18: Hash Tables.
P2P-SIP Presentation Philip Matthews Nimcat / Avaya.

P2P-SIP Presentation Philip Matthews Nimcat / Avaya.
PHP (2) – Functions, Arrays, Databases, email and sessions.

PHP (2) – Functions, Arrays, Databases, and sessions.
1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.

1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.
Hash Tables and Associative Containers CS-212 Dick Steflik.

Hash Tables and Associative Containers CS-212 Dick Steflik.
Lecture 10: The FAT, VFAT, and NTFS Filesystems 6/17/2003 CSCE 590 Summer 2003.

Lecture 10: The FAT, VFAT, and NTFS Filesystems 6/17/2003 CSCE 590 Summer 2003.
March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00.

March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00.
P2P: Advanced Topics Filesystems over DHTs and P2P research Vyas Sekar.

P2P: Advanced Topics Filesystems over DHTs and P2P research Vyas Sekar.
1 Operating Systems Chapter 7-File-System File Concept Access Methods Directory Structure Protection File-System Structure Allocation Methods Free-Space.

1 Operating Systems Chapter 7-File-System File Concept Access Methods Directory Structure Protection File-System Structure Allocation Methods Free-Space.
ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.

ITIS 6200/8200. time-stamping services Difficult to verify the creation date and accurate contents of a digital file Required properties of time-stamping.
COMP 171 Data Structures and Algorithms Tutorial 10 Hash Tables.

COMP 171 Data Structures and Algorithms Tutorial 10 Hash Tables.
Freenet A Distributed Anonymous Information Storage and Retrieval System I Clarke O Sandberg I Clarke O Sandberg B WileyT W Hong.

Freenet A Distributed Anonymous Information Storage and Retrieval System I Clarke O Sandberg I Clarke O Sandberg B WileyT W Hong.

Similar presentations

Ads by Google