Presentation is loading. Please wait.

Presentation is loading. Please wait.

March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00."— Presentation transcript:

1 March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00 Henning Schulzrinne Enrico Marocco Emil Ivov

2 Overview Attacker motivations Attacker resources P2P for real-time (vs. file sharing) –more than just a DHT March 2009 (IETF 74)IETF - P2PRG2

3 Attacker motivations Disrupt communications –extortion, dislike, political, … –incumbent operator? Financial gain –impersonation –theft of service –spamming (SPIT) Fun & fame March 2009 (IETF 74)IETF - P2PRG3

4 Attacker resources Identities: –IP addresses if used for DHT position user subscription limitations –mobile phone #’s –email addresses, … Computational resources –botnets make proof-of-work largely useless March 2009 (IETF 74)IETF - P2PRG4

5 Attack timing March 2009 (IETF 74)IETF - P2PRG5 go rogue Behave & acquire good reputation Join

6 Review: P2P for real-time Map names to other identifiers –sip:alice@example.com  alice@128.59.16.1 Provide (computational) services –proxying (registration, services) –relaying (NAT traversal) Store data –configuration data –voicemail March 2009 (IETF 74)IETF - P2PRG6

7 File sharing vs. real time File sharingReal-time Distributed databasefile location hundreds or thousands per user User locations: one per user Availabilitysame file, hundreds of copies each user is unique Integritypoison file store with bogus material  but no direct threat to user impersonate user  compromise user communication integrity ConfidentialityFiles are public (may want to hide origin) Communications is private (src/dest & content) March 2009 (IETF 74)IETF - P2PRG7

8 Admission control Goal: keep rogue percentage low –allows detection, voting, bypassing Group charter + group authority –authority certifies candidates compliance with charter –central authority or voting how practical in semi-anonymous systems? what information can votes be based on? ballot stuffing by compromised nodes Use CAPTCHA to reduce impact of bots RELOAD (and Skype) uses central authority March 2009 (IETF 74)IETF - P2PRG8

9 Position in overlay Sybil attacks do not depend on identifier –but preventing nodes from choosing location randomizes attacks IP address or identifier provided by central authority –IP address doesn’t work well for NATed devices –Allows attacker more choice Use temporary identifiers? –randomizes attack targets Use diametrically opposed IDs to avoid local collusion –rogue nodes can add neighbors March 2009 (IETF 74)IETF - P2PRG9

10 Identifying malicious peers Proactive –use test cases to detect misbehavior –“mystery shopper” Reactive –detect and report misbehavior Reputation management –mostly investigated for file sharing –difficult to prevent another denial-of-service attacks of rogue nodes –transitive trust March 2009 (IETF 74)IETF - P2PRG10

11 Real-time services are different Don’t need everyone to be a peer –just enough resources to get job done –just increases routing latency (log(N)) –increases chances of corruption Typically, promote nodes from clients to peers –use invitation, rather than self-promotion –based on uptime, resources, public IP address, geographic need Why would a client want to become peer? –Skype: closed  (almost) no choice –Open systems: incentives  randomized promotion for sybil prevention March 2009 (IETF 74)IETF - P2PRG11

12 Attack Denial of service –black hole signaling or media –fictitious error responses (“no such number”) –use iterative routing – getting closer? Integrity of location bindings –Identity-based crypto  non-intuitive identifiers Integrity of content (voice mail, …) –generally, only inserter needs access March 2009 (IETF 74)IETF - P2PRG12

13 Summary (& my take) P2P systems for real-time applications ≠ file sharing –more than just key  value mapping Identity scarcity is crucial –leverage existing hard-to-clone identities Reputation systems are unlikely to work –either central entity knows “good guys” –or they all look the same Avoiding centralization at all cost may not matter for real- time services –typically, don’t have Napster/PirateBay problem March 2009 (IETF 74)IETF - P2PRG13

Download ppt "March 2009 (IETF 74)IETF - P2PRG1 Security Issues and Solutions in Peer-to- peer Systems for Real-time Communications draft-schulzrinne-p2prg-rtc-security-00."

Similar presentations

The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.

The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Scope Discussion Seems to be a good deal of interest in moving this toward a working group If we want to work toward this, we need to have a clearly defined.

Scope Discussion Seems to be a good deal of interest in moving this toward a working group If we want to work toward this, we need to have a clearly defined.
1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.

1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.
TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.

TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.
September 19, 2006speermint interim1 VoIP Threats and Attacks Alan Johnston.

September 19, 2006speermint interim1 VoIP Threats and Attacks Alan Johnston.
Content  Overview of Computer Networks (Wireless and Wired)  IP Address, MAC Address and Workgroups  LAN Setup and Creating Workgroup  Concept on.

Content  Overview of Computer Networks (Wireless and Wired)  IP Address, MAC Address and Workgroups  LAN Setup and Creating Workgroup  Concept on.
Building a Peer-to-Peer Anonymizing Network Layer Michael J. Freedman NYU Dept of Computer Science Public Design Workshop September 13,

Building a Peer-to-Peer Anonymizing Network Layer Michael J. Freedman NYU Dept of Computer Science Public Design Workshop September 13,
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Paul Solomine Security of P2P Systems. P2P Systems Used to download copyrighted files illegally. The RIAA is watching you… Spyware! General users become.

Paul Solomine Security of P2P Systems. P2P Systems Used to download copyrighted files illegally. The RIAA is watching you… Spyware! General users become.
The Case for Network-Layer, Peer-to-Peer Anonymization Michael J. Freedman Emil Sit, Josh Cates, Robert Morris MIT Lab for Computer Science IPTPS’02March.

The Case for Network-Layer, Peer-to-Peer Anonymization Michael J. Freedman Emil Sit, Josh Cates, Robert Morris MIT Lab for Computer Science IPTPS’02March.
March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)

March 2008IETF 71 (Philadelphia) - RUCUS1 SPIT architectural issues Henning Schulzrinne Columbia University (based partially on draft-tschofenig-sipping-framework-spit-reduction-03)
The problems associated with operating an effective anti-spam blocklist system in an increasingly hostile environment. Robert Gallagher September 2004.

The problems associated with operating an effective anti-spam blocklist system in an increasingly hostile environment. Robert Gallagher September 2004.
Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems.

Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems.
Reliability and Relay Selection in Peer- to-Peer Communication Systems Salman A. Baset and Henning Schulzrinne Internet Real-time Laboratory Department.

Reliability and Relay Selection in Peer- to-Peer Communication Systems Salman A. Baset and Henning Schulzrinne Internet Real-time Laboratory Department.
Peer-to-peer approaches for SIP Henning Schulzrinne Dept. of Computer Science Columbia University.

Peer-to-peer approaches for SIP Henning Schulzrinne Dept. of Computer Science Columbia University.
 Structured peer to peer overlay networks are resilient – but not secure.  Even a small fraction of malicious nodes may result in failure of correct.

 Structured peer to peer overlay networks are resilient – but not secure.  Even a small fraction of malicious nodes may result in failure of correct.
Rajeev Bevara CS-555 Security Threats in VoIP. What is VoIP ? ➔ VOIP - Voice Over Internet Protocol. ➔ Delivery of voice communications and multimedia.

Rajeev Bevara CS-555 Security Threats in VoIP. What is VoIP ? ➔ VOIP - Voice Over Internet Protocol. ➔ Delivery of voice communications and multimedia.
A distributed Search Service for Peer-to-Peer File Sharing in Mobile Applications From U. of Dortmund, Germany.

A distributed Search Service for Peer-to-Peer File Sharing in Mobile Applications From U. of Dortmund, Germany.

Similar presentations

Ads by Google