Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman."— Presentation transcript:

1 1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman

2 2 Slashdot Effect

3 3 Existing Commerical CDNs Build your own solution –Expensive to set up –Only cost effective at massive scale Purchase from provider –Expensive –Requires prior knowledge of demand

4 4 Existing Free CDNs Peer-to-peer CDNs –Easy to use –Free! –Automatic redirection Unfortunately… –Over-subscribed –Under-provisioned –Scalability limited due to trust

5 5 Existing P2P Networks Leverage file-sharing networks –Demonstrated to provide scalability, fairness, and high-performance Design Mismatch –Not easily integrated into web browsers –High latency cost for small files

6 6 Introducing Firecoral What is Firecoral? –A peer-to-peer network for the web –Integrates directly into a user’s web browser –Ensures authenticity of content –Preserves user privacy –Backwards compatible Not focused on –P2P Algorithms –Incentives –Evaluation This talk’s focus –Security –Privacy –Usability

7 7 Firecoral Goals Content Providers –Easily integrate into existing web servers –Backwards compatibility –Not interfere with advertisements and analytics End Users –Easy to install and transparent to use –Provide content integrity –Respect privacy/sharing policies

8 8 Modified Content Provider ContentProviderContentProvider ClientClient PeerPeer PeerPeer PeerPeer URL Content Provider –Acts as tracker –Ensures authenticity But content provider –Still handles every request

9 9 External Tracker ContentProviderContentProvider ClientClient PeerPeer PeerPeer PeerPeer URL TrackerTracker ? Content provider –Still needs to provide authenticity –Still requires modification

10 10 Signing Service ContentProviderContentProvider ClientClient PeerPeer PeerPeer PeerPeer URL TrackerTracker SigningServiceSigningService Private Key = SS Computes Sig SS URL Sig SS

11 11 When to Use Firecoral Content to avoid –HTTPS Banking Online Shopping –POST Requests Web mail Feedback forms –Other private content?

12 12 When to Use Firecoral Simply list domains –Too coarse grained –Requires site lists be known Use HTTP referrer header –Captures 3rd party advertisements –Interferes with analytics

13 13 Configuration Example

14 14 Configuration Solution HTML Text –Difficult to parse –Requires maintenance Web standards! –XML Path Language (XPath) –Queries can select XML nodes from HTML –XPath rules are simple and easy to write –Firefox executes XPath very quickly

15 15 XPath Example Query for digg.com used to be: //div[@class='news-summary'] /descendant::a[starts-with(@href, 'http://') and not(contains(@class, 'thumb'))]/@href Digg releases “DiggBar” feature which changes HTML New query only changes one word: //div[@class='news-summary'] /descendant::a[starts-with(@href, 'http://') and not(contains(@class, 'thumb'))]/@title

16 16 Subscriptions List of Domain/XPath pairs Whitelist –Use Firecoral –Contains popular news aggregators Blacklist –Don’t use Firecoral –Contains known well-provisioned sites

17 17 Implementation Tracker –1000 lines of PHP running on Apache –Uses MySQL, Memcachedb, and Memcached Signing Service –700 lines of Python Firefox Extension –7000 lines of JavaScript, XUL, and CSS –Runs an HTTP proxy server within Firefox –Uses Mozilla XPConnect API for access to low-level network functions –Cross platform

18 18 Demo

19 19 Conclusions Firecoral brings P2P to the web Firecoral provides –Security –Privacy –Usability Allows content providers to easily support Firecoral Allows users to easily configure sharing and privacy policy

20 20 Future Work Implementation –NAT traversal –Apache plug-in for signing and redirection Design –Incentives –Peer selection –Measurement study

21 21 Thank You Questions? http://firecoral.net/

Download ppt "1 Bringing P2P to the Web: Security and Privacy in the Firecoral Network Jeff Terrace Harold Laidlaw Hao Eric Liu Sean Stern Michael Freedman."

Similar presentations

The GridSite Toolbar Shiv Kaushal The University of Manchester All Hands Meeting 2006.

The GridSite Toolbar Shiv Kaushal The University of Manchester All Hands Meeting 2006.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Browser Security Modes Alex Crowell and James Kasten.

Browser Security Modes Alex Crowell and James Kasten.
Testing Web Applications & Services Testing Web Applications & Web Services.

Testing Web Applications & Services Testing Web Applications & Web Services.
By: Ansuya Chauhan.

By: Ansuya Chauhan.
Blackbox Reversing of XSS Filters Alexander Sotirov ekoparty 2008.

Blackbox Reversing of XSS Filters Alexander Sotirov ekoparty 2008.
XML Based Learning Environment Prashant Karmarkar Brendan Nolan Alexander Roda.

XML Based Learning Environment Prashant Karmarkar Brendan Nolan Alexander Roda.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
1 Web Content Delivery Reading: Section 9.2.2 and 9.4.3 COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Ioannis Avramopoulos Instructor:

1 Web Content Delivery Reading: Section and COS 461: Computer Networks Spring 2007 (MW 1:30-2:50 in Friend 004) Ioannis Avramopoulos Instructor:
PORTIA Robert Grimm New York University Security Challenges for Rich-Media Educational Environments.

PORTIA Robert Grimm New York University Security Challenges for Rich-Media Educational Environments.
Proxy Servers Dr. Ronald Bergmann, CIO, ISO. Proxy servers A proxy server is a machine which acts as an intermediary between the computers of a local.

Proxy Servers Dr. Ronald Bergmann, CIO, ISO. Proxy servers A proxy server is a machine which acts as an intermediary between the computers of a local.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
E-Commerce The technical side. LAMP Linux Linux Apache Apache MySQL MySQL PHP PHP All Open Source and free packages. Can be installed and run on most.

E-Commerce The technical side. LAMP Linux Linux Apache Apache MySQL MySQL PHP PHP All Open Source and free packages. Can be installed and run on most.
Part or all of this lesson was adapted from the University of Washington’s “Web Design & Development I” Course materials.

Part or all of this lesson was adapted from the University of Washington’s “Web Design & Development I” Course materials.
269200 Web Programming Language Dr. Ken Cosh Week 1 (Introduction)

Web Programming Language Dr. Ken Cosh Week 1 (Introduction)
APACHE SERVER By Innovationframes.com »

APACHE SERVER By Innovationframes.com »
WHAT IS PHP PHP is an HTML-embedded scripting language primarily used for dynamic Web applications.

WHAT IS PHP PHP is an HTML-embedded scripting language primarily used for dynamic Web applications.
Introducing Fiddler Web Debugging for Performance and Operations www.fiddler2.com/perf/

Introducing Fiddler Web Debugging for Performance and Operations
1 Content Distribution Networks. 2 Replication Issues Request distribution: how to transparently distribute requests for content among replication servers.

1 Content Distribution Networks. 2 Replication Issues Request distribution: how to transparently distribute requests for content among replication servers.
Ashish jaiman architect evangelist Microsoft

Ashish jaiman architect evangelist Microsoft

Similar presentations

Ads by Google