Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems."— Presentation transcript:

1 Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems

2 Oct 6, 2003CS 294-4: Peer-to-Peer Systems2 The problem P2P systems: resilient but not secure Malicious nodes:  fake IDs  distort routing table entries  prevent correct message delivery “Techniques to allow nodes to join, to maintain routing state, and to forward messages securely in presence of malicious nodes”

3 Oct 6, 2003CS 294-4: Peer-to-Peer Systems3 In retrospect Unlike Byzantine solutions  specific to P2P systems  no exact agreement needs to be reached Unlike the Sybil attack  resort to central authentication for IDs

4 Oct 6, 2003CS 294-4: Peer-to-Peer Systems4 The model N nodes Bound f on the fraction of faulty nodes Bound cN on the number of faulty nodes in coalition Every node has a static IP address “Secure routing ensures that when a non-faulty node sends a message to key k, the message reaches all non-faulty members is the set of replica roots R k with very high probability”

5 Oct 6, 2003CS 294-4: Peer-to-Peer Systems5 Sub-problems Securely assigning IDs to nodes  attacker may capture all replicas for an object  attacker may target a particular victim Securely maintaining routing tables  attackers may populate with faulty entries  most messages are routed to faulty nodes Securely forwarding messages  even with proper routing tables, faulty nodes can corrupt, drop, misroute messages

6 Oct 6, 2003CS 294-4: Peer-to-Peer Systems6 Certified nodeIDs Offline certification authorities  assign random IDs to nodes  certificate binds the ID to public key and IP attacker cannot swap IDs between his nodes bad for dynamic address assignment, host mobility, or organizational changes CAN nodeIDs change when nodes join and depart  Avoid giving multiple IDs to one entity charge for each certificate – increases cost of attack bind IDs to existing trustworthy identities

7 Oct 6, 2003CS 294-4: Peer-to-Peer Systems7 Secure routing table maintenance Should have at most fraction f of faulty entries  worst for row 0 of the Pastry routing table  during node joins, probability of getting a faulty entry is (1 - f) x f + f x 1 > f Impose constraints on the table entry  required to be closest to some point in ID space  like Chord

8 Oct 6, 2003CS 294-4: Peer-to-Peer Systems8 One solution for Pastry: two routing tables Normal locality-aware routing table A constrained routing table  Row l, column d entry for node i: shares a prefix of length l with I has d as its (l+1) st digit closest nodeID to the point p: p satisfies above properties and has remaining digits same as i New state initialization algorithm exploiting an interesting property

9 Oct 6, 2003CS 294-4: Peer-to-Peer Systems9 Secure message forwarding Probability of routing successfully between two non-faulty nodes is (1-f) h-1  h is log 2 b (N) for Pastry Probability of routing correctly to a non- faulty replica root is (1-f) h Tradeoff: increasing b decreases the number of hops but also increases the amount of state information

10 Oct 6, 2003CS 294-4: Peer-to-Peer Systems10 Probability of routing to a correct replica b=4

11 Oct 6, 2003CS 294-4: Peer-to-Peer Systems11 Proposed Solution Has to ensure that with high probability, one copy of the message reaches each replica root 1.Route message to the key 2.Root node returns prospective set of replica roots 3.Did routing work? (failure test) Yes: use these as replica roots No: use expensive redundant routing

12 Oct 6, 2003CS 294-4: Peer-to-Peer Systems12 Routing failure test Takes a key and the set of prospective replica roots Returns negative if the set of roots is likely to be correct for the key; otherwise positive If no set is returned, returns positive Works by comparing the density of nodeIDs in the sender’s neighborhood set with the density of nodeIDs close to the replica roots of the destination key

13 Oct 6, 2003CS 294-4: Peer-to-Peer Systems13 The test for Pastry In Pastry, the replica set is a subset of the neighbor set of the key’s root Let µ p be the average numerical distance between the consecutive nodeIDs in p’s neighbor set To test root neighbor set {id0, id1, …}, for a key x, p checks that: 1.All nodeIDs in the set have valid certificates, the middle one is the closest nodeID to x, and the nodeIDs satisfy the definition of a neighbor set 2.The average numerical distance µ rn between consecutive nodeIDs in this set < µ p x γ γ decides the tradeoff between false positives and false negatives

14 Oct 6, 2003CS 294-4: Peer-to-Peer Systems14 Redundant routing If the failure test returns positive Use constrained routing table P sends the message to key x via different members of its neighborhood set  messages take diverse path (longer paths?) Any non-faulty node that receives the message and has the root of x in its neighborhood set, sends its certificate to p p collects such certificates in a list; sends the list to all nodes in the list. Process iterates upto 3 times p computes the closest neighbor’s to x

15 Oct 6, 2003CS 294-4: Peer-to-Peer Systems15 Performance of redundant routing 100,000 nodes, b=4, l=r=32

16 Oct 6, 2003CS 294-4: Peer-to-Peer Systems16 Etc. Tolerates upto 25% malicious nodes well Self-certifying data – nodes can check the authenticity of returned objects  reduces need for redundant routing

Download ppt "Secure routing for structured peer-to-peer overlay networks (by Castro et al.) Shariq Rizvi CS 294-4: Peer-to-Peer Systems."

Similar presentations

Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.

Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.
Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK

Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK
Pastiche: Making Backup Cheap and Easy. Introduction Backup is cumbersome and expensive Backup is cumbersome and expensive ~$4/GB/Month (now $0.02/GB)

Pastiche: Making Backup Cheap and Easy. Introduction Backup is cumbersome and expensive Backup is cumbersome and expensive ~$4/GB/Month (now $0.02/GB)
Storage management and caching in PAST, a large-scale, persistent peer-to-peer storage utility Antony Rowstron, Peter Druschel Presented by: Cristian Borcea.

Storage management and caching in PAST, a large-scale, persistent peer-to-peer storage utility Antony Rowstron, Peter Druschel Presented by: Cristian Borcea.
Identity Theft Protection in Structured Overlays Lakshmi Ganesh Ben Y. Zhao University of California, Santa Barbara NPSec 2005.

Identity Theft Protection in Structured Overlays Lakshmi Ganesh Ben Y. Zhao University of California, Santa Barbara NPSec 2005.
The Byzantine Generals Problem Boon Thau Loo CS294-4.

The Byzantine Generals Problem Boon Thau Loo CS294-4.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
Peer-to-Peer Systems Kulesh Shanmugasundaram Security Issues.

Peer-to-Peer Systems Kulesh Shanmugasundaram Security Issues.
Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.

Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.
1 PASTRY Partially borrowed from Gabi Kliot ’ s presentation.

1 PASTRY Partially borrowed from Gabi Kliot ’ s presentation.
Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.

Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.
Pastry: Scalable, decentralized object location and routing for large-scale peer-to-peer systems Antony Bowstron & Peter Druschel Presented by: Long Zhang.

Pastry: Scalable, decentralized object location and routing for large-scale peer-to-peer systems Antony Bowstron & Peter Druschel Presented by: Long Zhang.
Secure routing for structured peer-to-peer overlay networks M. Castro, P. Druschel, A. Ganesch, A. Rowstron, D.S. Wallach 5th Unix Symposium on Operating.

Secure routing for structured peer-to-peer overlay networks M. Castro, P. Druschel, A. Ganesch, A. Rowstron, D.S. Wallach 5th Unix Symposium on Operating.
Scribe: A Large-Scale and Decentralized Application-Level Multicast Infrastructure Miguel Castro, Peter Druschel, Anne-Marie Kermarrec, and Antony L. T.

Scribe: A Large-Scale and Decentralized Application-Level Multicast Infrastructure Miguel Castro, Peter Druschel, Anne-Marie Kermarrec, and Antony L. T.
Pastry: Scalable, decentralized object location and routing for large-scale peer-to-peer systems Antony Rowstron and Peter Druschel Proc. of the 18th IFIP/ACM.

Pastry: Scalable, decentralized object location and routing for large-scale peer-to-peer systems Antony Rowstron and Peter Druschel Proc. of the 18th IFIP/ACM.
Secure routing for structured peer-to-peer overlay networks Miguel Castro, Ayalvadi Ganesh, Antony Rowstron Microsoft Research Ltd. Peter Druschel, Dan.

Secure routing for structured peer-to-peer overlay networks Miguel Castro, Ayalvadi Ganesh, Antony Rowstron Microsoft Research Ltd. Peter Druschel, Dan.
Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.
SkipNet: A Scalable Overlay Network with Practical Locality Properties Nick Harvey, Mike Jones, Stefan Saroiu, Marvin Theimer, Alec Wolman Presented by.

SkipNet: A Scalable Overlay Network with Practical Locality Properties Nick Harvey, Mike Jones, Stefan Saroiu, Marvin Theimer, Alec Wolman Presented by.
Pastry Partially borrowed for Gabi Kliot. Pastry Scalable, decentralized object location and routing for large-scale peer-to-peer systems  Antony Rowstron.

Pastry Partially borrowed for Gabi Kliot. Pastry Scalable, decentralized object location and routing for large-scale peer-to-peer systems  Antony Rowstron.
Looking Up Data in P2P Systems Hari Balakrishnan M.Frans Kaashoek David Karger Robert Morris Ion Stoica.

Looking Up Data in P2P Systems Hari Balakrishnan M.Frans Kaashoek David Karger Robert Morris Ion Stoica.

Similar presentations

Ads by Google