Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Sybil-Proof Distributed Hash Table Chris Lesniewski-LaasM. Frans Kaashoek MIT 28 April 2010 NSDI

Published byPierce Cole Modified over 9 years ago

Similar presentations

Presentation on theme: "A Sybil-Proof Distributed Hash Table Chris Lesniewski-LaasM. Frans Kaashoek MIT 28 April 2010 NSDI"— Presentation transcript:

1 A Sybil-Proof Distributed Hash Table Chris Lesniewski-LaasM. Frans Kaashoek MIT 28 April 2010 NSDI http://pdos.csail.mit.edu/whanau/slides.pptx

2 Distributed Hash Table Interface: PUT(key, value), GET(key) → value Route to peer responsible for key GET( sip://alice@foo ) PUT( sip://alice@foo, 18.26.4.9 )

3 The Sybil attack on open DHTs Create many pseudonyms (Sybils), join DHT Sybils join the DHT as usual, disrupt routing Brute-force attackClustering attack

4 Sybil state of the art P2P mania! Chord, Pastry, Tapestry, CAN The Sybil Attack [Douceur], Security Considerations [Sit, Morris] Restricted tables [Castro et al] BFT [Rodrigues, Liskov] SPROUT, Turtle, Bootstrap graphs Puzzles [Borisov] CAPTCHA [Rowaihy et al] SybilLimit [Yu et al] SybilInfer, SumUp, DSybil (This work) P2P mania!

5 Contribution Whānau: an efficient Sybil-proof DHT protocol – G ET cost: O(1) messages, one RTT latency – Cost to build routing tables: O(√N log N) storage/bandwidth per node (for N keys) – Oblivious to number of Sybils! Proof of correctness PlanetLab implementation Large-scale simulations vs. powerful attack

6 Division of labor Application provides integrity Whānau provides availability E.g., application signs values using private key Proc G ET (key): Until valid value found: Try value = L OOKUP (key) Repeat

7 Approach Use a social network to limit Sybils – Addresses brute-force attack New technique: layered identifiers – Addresses clustering attacks

8 S ETUP : periodically build tables using social links L OOKUP : use tables to route efficiently Two main phases S ETUP L OOKUP Social Network Routing Tables key value P UT ( key, value ) P UT Queue

9 Social links created

10 Social links maintained over Internet

11 Sybil region Social network Honest region … Attack edges

12 Random walks c.f. SybilLimit [Yu et al 2008]

13 Building tables using random walks c.f. SybilLimit [Yu et al 2008] What have we accomplished? Small fraction (e.g. < 50%) of bad nodes in routing tables Bad fraction is independent of number of Sybil nodes

14 S ETUP L OOKUP Social Network Routing Tables key value P UT ( key, value ) P UT Queue

15 Routing table structure O(√n) fingers and O(√n) keys stored per node Fingers have random IDs, cover all keys WHP Lookup: query closest finger to target key Finger tables: (ID, address) Key tables: (key,value) Keynes AardvarkZyzzyva Kelvin

16 From social network to routing tables Finger table: randomly sample O(√n) nodes Most samples are honest

17 Honest nodes pick IDs uniformly Plenty of fingers near key

18 Sybil ID clustering attack [Hypothetical scenario: 50% Sybil IDs, 50% honest IDs] Many bad fingers near key

19 Honest layered IDs mimic Sybil IDs Layer 0Layer 1

20 Every range is balanced in some layer Layer 0Layer 1

21 Two layers is not quite enough Layer 0Layer 1 Ratio = 1 honest : 10 Sybils Ratio = 10 honest : 100 Sybils

22 Log n parallel layers is enough log n layered IDs for each node Lookup steps: 1.Pick a random layer 2.Pick a finger to query 3.GOTO 1 until success or timeout Layer 0 Layer 1Layer 2Layer L …

23 Main theorem: secure DHT routing If we run Whānau’s S ETUP using: 1.A social network with walk length = O(log n) and number of attack edges = O(n/log n) 2.Routing tables of size Ω(√N log N) per node Then, for any input key and all but εn nodes: Each lookup attempt (i.e., coin flip) succeeds with probability Ω(1) Thus G ET (key) uses O(1) messages (expected)

24 Evaluation: Hypotheses 1.Random walk technique yields good samples 2.Lookups succeed under clustering attacks 3.Layered identifiers are necessary for security 4.Performance scales the same as a one-hop DHT 5.Whānau handles network failures and churn

25 Method Efficient message-based simulator – Social network data spidered from Flickr, Youtube, DBLP, and LiveJournal ( n =5.2M) – Clustering attack, varying number of attack edges PlanetLab implementation

26 Escape probability [Flickr social network: n ≈ 1.6M, average degree ≈ 9.5]

27 Walk length tradeoff [Flickr social network: n ≈ 1.6M, average degree ≈ 9.5]

28 Whānau delivers high availability [Flickr social network: n ≈ 1.6M, 3 √n ≈ 4000] 3√n

29 Everything rests on the model… …

30 Contributions Whānau: an efficient Sybil-proof DHT – Use a social network to filter good nodes – Resist up to O(n/log n) attack edges – Table size per node: O(√N log N) – Messages to route: O(1) Introduced layers to combat clustering attacks

Download ppt "A Sybil-Proof Distributed Hash Table Chris Lesniewski-LaasM. Frans Kaashoek MIT 28 April 2010 NSDI"

Similar presentations

Distributed Hash Tables

Distributed Hash Tables
P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.

P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.
Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.

Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.
Peer to Peer and Distributed Hash Tables

Peer to Peer and Distributed Hash Tables
Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.

Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.
CHORD – peer to peer lookup protocol Shankar Karthik Vaithianathan & Aravind Sivaraman University of Central Florida.

CHORD – peer to peer lookup protocol Shankar Karthik Vaithianathan & Aravind Sivaraman University of Central Florida.
Chord: A Scalable Peer-to- Peer Lookup Service for Internet Applications Ion StoicaRobert Morris David Liben-NowellDavid R. Karger M. Frans KaashoekFrank.

Chord: A Scalable Peer-to- Peer Lookup Service for Internet Applications Ion StoicaRobert Morris David Liben-NowellDavid R. Karger M. Frans KaashoekFrank.
Ion Stoica, Robert Morris, David Liben-Nowell, David R. Karger, M

Ion Stoica, Robert Morris, David Liben-Nowell, David R. Karger, M
Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.

Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.
1 1 Chord: A scalable Peer-to-peer Lookup Service for Internet Applications Dariotaki Roula

1 1 Chord: A scalable Peer-to-peer Lookup Service for Internet Applications Dariotaki Roula
P2P Network Structured Networks: Distributed Hash Tables Pedro García López Universitat Rovira I Virgili

P2P Network Structured Networks: Distributed Hash Tables Pedro García López Universitat Rovira I Virgili
Chord: A Scalable Peer-to-Peer Lookup Service for Internet Applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan Presented.

Chord: A Scalable Peer-to-Peer Lookup Service for Internet Applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan Presented.
Authors Haifeng Yu, Michael Kaminsky, Phillip B. Gibbons, Abraham Flaxman Presented by: Jonathan di Costanzo & Muhammad Atif Qureshi 1.

Authors Haifeng Yu, Michael Kaminsky, Phillip B. Gibbons, Abraham Flaxman Presented by: Jonathan di Costanzo & Muhammad Atif Qureshi 1.
A Sybil-proof DHT using a social network Socialnets workshop April 1, 2008 Chris Lesniewski-Laas MIT CSAIL.

A Sybil-proof DHT using a social network Socialnets workshop April 1, 2008 Chris Lesniewski-Laas MIT CSAIL.
Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.

Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.
Haifeng Yu National University of Singapore

Haifeng Yu National University of Singapore
Small-world Overlay P2P Network

Small-world Overlay P2P Network
Positive Feedback Loops in DHTs or Be Careful How You Simulate January 13, 2004 Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz From “Handling.

Positive Feedback Loops in DHTs or Be Careful How You Simulate January 13, 2004 Sean Rhea, Dennis Geels, Timothy Roscoe, and John Kubiatowicz From “Handling.
Chord-over-Chord Overlay Sudhindra Rao Ph.D Qualifier Exam Department of ECECS.

Chord-over-Chord Overlay Sudhindra Rao Ph.D Qualifier Exam Department of ECECS.
SkipNet: A Scaleable Overlay Network With Practical Locality Properties Presented by Rachel Rubin CS294-4: Peer-to-Peer Systems By Nicholas Harvey, Michael.

SkipNet: A Scaleable Overlay Network With Practical Locality Properties Presented by Rachel Rubin CS294-4: Peer-to-Peer Systems By Nicholas Harvey, Michael.

Similar presentations

Ads by Google