Presentation is loading. Please wait.

Presentation is loading. Please wait.

Decentralized Trust Management for Ad-Hoc Peer-to-Peer Networks Thomas Repantis Vana Kalogeraki Department of Computer Science & Engineering University.

Published byEleanore Matthews Modified over 8 years ago

Similar presentations

Presentation on theme: "Decentralized Trust Management for Ad-Hoc Peer-to-Peer Networks Thomas Repantis Vana Kalogeraki Department of Computer Science & Engineering University."— Presentation transcript:

1 Decentralized Trust Management for Ad-Hoc Peer-to-Peer Networks Thomas Repantis Vana Kalogeraki Department of Computer Science & Engineering University of California, Riverside {trep,vana}@cs.ucr.edu http://www.cs.ucr.edu/~{trep,vana}

2 Thomas Repantis2/28 Ad-Hoc Peer-to-Peer Networks Personal mobile devices can form ad-hoc networks to autonomously share data and services Work-related projects Multi-player games Social networks Auctions Nodes are both clients and servers No central coordinator

3 Thomas Repantis3/28 Advantages of Peer-to-Peer Scalability: No central coordinator Reliability: No single point of failure Self-organization: Autonomous decisions to adapt to different loads Resource aggregation: Take advantage of existing resources Successfully deployed for: Distributed Computing (e.g. Seti @, Folding @) File Sharing (e.g. Gnutella, DHTs) Online Gaming (e.g. Playstation) Spam Detection (e.g. SpamNet)

4 Thomas Repantis4/28 Our Research Question How to enable a peer to decide whether to trust another peer in the absence of a central trust managing authority A puts a level of trust into B means that A estimates the probability of B acting in a way that will allow A to achieve a desired level of satisfaction A can estimate the level of trust to put into B based on B's reputation, built from B's previous interactions Challenges: Information about peer interactions is spread across the network Malicious peers might tamper with reputation information while stored or transmitted

5 Thomas Repantis5/28 Reputation-Based Trust Management Middleware Requirements Enable peers to identify trustworthy peers for the particular resource and level of trust they require Light-weight, so that the protocol overhead is not hindering peers' interaction Resistant to reputation tampering Resistant to collusions

6 Thomas Repantis6/28 Our Approach Decentralized trust management middleware for unstructured, ad-hoc, peer-to-peer networks, based on reputation Storing the reputation information of a peer in a group of peers not easily identifiable, i.e., its neighbors Reputation piggy-backed on a peer's replies Taking advantage of the lack of network structure to resist collusions and blackmailing

7 Thomas Repantis7/28 Roadmap 1. Motivation and Background 2. System Model 3. Operation 4. Attacks 5. Algorithms 6. Experimental Evaluation 7. Related Work 8. Conclusions and Future Work

8 Thomas Repantis8/28 System Model Peers identified by public/private key pairs Provide objects (data or services) Form unstructured, self-organizing network Peer offering an object receives a rating r Reputation R is the sum of ratings Consumer trusts provider if its reputation is higher than the minimum trust level it requires for this particular type of object

9 Thomas Repantis9/28 Object Discovery Peers search for objects by sending queries to their immediate neighbors Queries are propagated until their TTL expires Matches generate query-hits Every query is identified by a transaction globally unique identifier, TID TID is a random number together with the public key of the peer that produced the query TID is the same for the query, all query-hits, and all ratings produced as a result of the query By caching TIDs, query-hits follow the reverse path of the corresponding queries

10 Thomas Repantis10/28 Reputation Propagation Every immediate neighbor of a peer, through which a query-hit of the peer travels, is responsible for piggy-backing the reputation of the peer to the query-hit All immediate neighbors are responsible for maintaining and piggy-backing its reputation The reputation reported for a peer is associated with a confidence value, determined by the number of neighbors reporting it After an interaction the consumer sends a signed rating to all producer's neighbors TTL of rating is larger than TTL of query by 1 Rating is verified using the public key contained in query's TID

11 Thomas Repantis11/28 Query and Query-Hit G F H I J C D B A E Q Q Q Q Q Q R QH QHQH R R R K

12 Thomas Repantis12/28 Rating G F H I J K C D B A E r r r r r r r r r

13 Thomas Repantis13/28 Roadmap 1. Motivation and Background 2. System Model 3. Operation 4. Attacks 5. Algorithms 6. Experimental Evaluation 7. Related Work 8. Conclusions and Future Work

14 Thomas Repantis14/28 Against Tampering Attack: Alter neighbor's reputation Countermeasure: Since multiple peers might report a peer's reputation, tampering can be detected. A makes sure reputation of F reported by C and D is the same G F H I J C D B A E Q Q Q Q Q Q R QH QHQH R R R K

15 Thomas Repantis15/28 Against Tampering Attack: Alter own reputation Countermeasure: A peer does not store its own reputation Attack: Alter rating during transmission Countermeasure: Ratings signed by their creator G F H I J K C D B A E r r r r r r r r r

16 Thomas Repantis16/28 Against Blackmailing Attack: Peer blackmailing a neighbor to boost its reputation Countermeasure: Peers store their neighbors' reputation and their neighbors store theirs. Single neighbor reporting bogus reputation runs the risk of identification G F H I J C D B A E Q Q Q Q Q R QH QHQH R R R K

17 Thomas Repantis17/28 Against Multiple Ratings Attack: Submitting multiple positive or negative ratings Countermeasure: No effect, because no corresponding TID stored at the neighbors by a previous query-hit G F H I J K C D B A E r r r r r r r r r

18 Thomas Repantis18/28 Against Collusions Attack: T wo neighbors boosting each other's reputation Countermeasure: W ould have to cooperate with all their neighbors and they consequently with all their neighbors etc. G F H I J C D B A E Q Q Q Q Q Q R QH R R R K

19 Thomas Repantis19/28 Against Collusions Attack: Peer bribing some of its neighbors to boost its reputation and only propagating query-hits through them Countermeasure: Detected by the rest of the neighbors when receiving unexpired ratings for their neighbor, with TIDs of query- hits they had not propagated G F H I J K C D B A E r r r r r r r r r

20 Thomas Repantis20/28 Against Collusions Attack: Peer bribing all of its neighbors to boost its reputation Countermeasure: A high confidence value requires a high number of bribed neighbors G F H I J C D B A E Q Q Q Q Q Q R QH R R R K

21 Thomas Repantis21/28 System Algorithms Selection Algorithm: Per object trust and confidence levels Rating Algorithm: Binary rating scheme, -1 dissatisfied, +1 satisfied Enable objective interpretation and automatic assignment Initialization Algorithm: Protocols against sybil attacks can be integrated in our middleware to prevent identity changes

22 Thomas Repantis22/28 Roadmap 1. Motivation and Background 2. System Model 3. Operation 4. Attacks 5. Algorithms 6. Experimental Evaluation 7. Related Work 8. Conclusions and Future Work

23 Thomas Repantis23/28 Experimental Evaluation Simulated Gnutella unstructured, peer-to- peer networks of thousands of peers using NeuroGrid simulator 3000 types of objects, 30 objects per peer 100 random searches per experiment and average results from 5 measurements Malicious peers claim they have every object they are asked for but they can only cheat undetected once

24 Thomas Repantis24/28 Variable Percentage of Honest Peers If 1 out of 10 peers is dishonest, 9 out of 10 query-hits are bogus

25 Thomas Repantis25/28 Variable Number of Peers Dishonest peers can flood even networks of thousands of peers

26 Thomas Repantis26/28 Related Work Peers polling for opinion of others: P2PRep Reputation certificates signed by raters: RcertPX Reputation stored in anonymous random peers: TrustMe Reputation replicated in a group of peers: EigenTrust Voting on the reputation of objects instead of peers: Credence Identify ratings not corresponding to actual transactions: TrustGuard

27 Thomas Repantis27/28 Conclusions and Future Work Decentralized trust management middleware for ad-hoc, peer-to-peer networks, based on reputation Takes advantage of unstructured topology to make malicious behavior risky Peers are equal and self-organizing Fully distributed, non-intrusive protocol Future work: Investigate the effects of mobility, elaborate on peer selection and rating algorithms

28 Thomas Repantis28/28 Thank You! http://www.cs.ucr.edu/~trep/

29 Decentralized Trust Management for Ad-Hoc Peer-to-Peer Networks Thomas Repantis Vana Kalogeraki Department of Computer Science & Engineering University of California, Riverside {trep,vana}@cs.ucr.edu http://www.cs.ucr.edu/~{trep,vana}

Download ppt "Decentralized Trust Management for Ad-Hoc Peer-to-Peer Networks Thomas Repantis Vana Kalogeraki Department of Computer Science & Engineering University."

Similar presentations

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,
Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.

Distributed Systems Major Design Issues Presented by: Christopher Hector CS8320 – Advanced Operating Systems Spring 2007 – Section 2.6 Presentation Dr.
Scalable Content-Addressable Network Lintao Liu 2001.11.19.

Scalable Content-Addressable Network Lintao Liu
On the Economics of P2P Systems Speaker Coby Fernandess.

On the Economics of P2P Systems Speaker Coby Fernandess.
Location Based Trust for Mobile User – Generated Content : Applications, Challenges and Implementations Presented By : Anand Dipakkumar Joshi USC.

Location Based Trust for Mobile User – Generated Content : Applications, Challenges and Implementations Presented By : Anand Dipakkumar Joshi USC.
Improving Peer-to-Peer Networks “Limited Reputation Sharing in P2P Systems” “Robust Incentive Techniques for P2P Networks”

Improving Peer-to-Peer Networks “Limited Reputation Sharing in P2P Systems” “Robust Incentive Techniques for P2P Networks”
Technion –Israel Institute of Technology Computer Networks Laboratory A Comparison of Peer-to-Peer systems by Gomon Dmitri and Kritsmer Ilya under Roi.

Technion –Israel Institute of Technology Computer Networks Laboratory A Comparison of Peer-to-Peer systems by Gomon Dmitri and Kritsmer Ilya under Roi.
Search and Replication in Unstructured Peer-to-Peer Networks Pei Cao, Christine Lv., Edith Cohen, Kai Li and Scott Shenker ICS 2002.

Search and Replication in Unstructured Peer-to-Peer Networks Pei Cao, Christine Lv., Edith Cohen, Kai Li and Scott Shenker ICS 2002.
TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.

TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.
Denial-of-Service Resilience in Peer-to-Peer Systems D. Dumitriu, E. Knightly, A. Kuzmanovic, I. Stoica and W. Zwaenepoel Presenter: Yan Gao.

Denial-of-Service Resilience in Peer-to-Peer Systems D. Dumitriu, E. Knightly, A. Kuzmanovic, I. Stoica and W. Zwaenepoel Presenter: Yan Gao.
Experience with an Object Reputation System for Peer-to-Peer File Sharing NSDI’06(3th USENIX Symposium on Networked Systems Design & Implementation) Kevin.

Experience with an Object Reputation System for Peer-to-Peer File Sharing NSDI’06(3th USENIX Symposium on Networked Systems Design & Implementation) Kevin.
Peer-to-Peer Networks João Guerreiro Truong Cong Thanh Department of Information Technology Uppsala University.

Peer-to-Peer Networks João Guerreiro Truong Cong Thanh Department of Information Technology Uppsala University.
Open Problems in Data- Sharing Peer-to-Peer Systems Neil Daswani, Hector Garcia-Molina, Beverly Yang.

Open Problems in Data- Sharing Peer-to-Peer Systems Neil Daswani, Hector Garcia-Molina, Beverly Yang.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
FRIENDS: File Retrieval In a dEcentralized Network Distribution System Steven Huang, Kevin Li Computer Science and Engineering University of California,

FRIENDS: File Retrieval In a dEcentralized Network Distribution System Steven Huang, Kevin Li Computer Science and Engineering University of California,
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
Mitigating routing misbehavior in ad hoc networks Mary Baker Departments of Computer Science and.

Mitigating routing misbehavior in ad hoc networks Mary Baker Departments of Computer Science and.
1 Denial-of-Service Resilience in P2P File Sharing Systems Dan Dumitriu (EPFL) Ed Knightly (Rice) Aleksandar Kuzmanovic (Northwestern) Ion Stoica (Berkeley)

1 Denial-of-Service Resilience in P2P File Sharing Systems Dan Dumitriu (EPFL) Ed Knightly (Rice) Aleksandar Kuzmanovic (Northwestern) Ion Stoica (Berkeley)
A Trust Based Assess Control Framework for P2P File-Sharing System Speaker : Jia-Hui Huang Adviser : Kai-Wei Ke Date : 2004 / 3 / 15.

A Trust Based Assess Control Framework for P2P File-Sharing System Speaker : Jia-Hui Huang Adviser : Kai-Wei Ke Date : 2004 / 3 / 15.
ODISSEA Mehdi Kharrazi Kulesh Shanmugasundaram Security Issues.

ODISSEA Mehdi Kharrazi Kulesh Shanmugasundaram Security Issues.

Similar presentations

Ads by Google