Detection and mitigation of localized attacks in a widely deployed P2P network

Thibault Cholez 1 Isabelle Chrisment 2 Olivier Festor 2 Guillaume Doyen 1
1 ERA - Environnement de Réseaux Autonomes
ICD - Institut Charles Delaunay
2 MADYNES - Management of dynamic networks and services
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
Abstract : Several large scale P2P networks operating on the Internet are based on a Distributed Hash Table. These networks offer valuable services, but they all suffer from a critical issue allowing malicious nodes to be inserted in specific places on the DHT for undesirable purposes (monitoring, distributed denial of service, pollution, etc.). While several attacks and attack scenarios have been documented, few studies have measured the actual deployment of such attacks and none of the documented countermeasures have been tested for compatibility with an already deployed network. In this article, we focus on the KAD network. Based on large scale monitoring campaigns, we show that the world-wide deployed KAD network suffers large number of suspicious insertions around shared contents and we quantify them. To cope with these peers, we propose a new efficient protection algorithm based on analyzing the distribution of the peers' ID found around an entry after a DHT lookup. We evaluate our solution and show that it detects the most efficient configurations of inserted peers with a very small false-negative rate, and that the countermeasures successfully filter almost all the suspicious peers. We demonstrate the direct applicability of our approach by implementing and testing our solution in real P2P networks.
Type de document :
Article dans une revue
Peer-to-Peer Networking and Applications, Springer, 2012, Special Issue on Experimental Evaluation of Peer-to-Peer Applications, 6 (2), pp.155-174. 〈http://link.springer.com/article/10.1007%2Fs12083-012-0137-7〉. 〈10.1007/s12083-012-0137-7〉
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-00786438
Contributeur : Thibault Cholez <>
Soumis le : vendredi 8 février 2013 - 15:48:46
Dernière modification le : mardi 27 février 2018 - 14:40:04
Document(s) archivé(s) le : lundi 17 juin 2013 - 20:26:11

Fichier

detection_mitigation_sybil_att...
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Thibault Cholez, Isabelle Chrisment, Olivier Festor, Guillaume Doyen. Detection and mitigation of localized attacks in a widely deployed P2P network. Peer-to-Peer Networking and Applications, Springer, 2012, Special Issue on Experimental Evaluation of Peer-to-Peer Applications, 6 (2), pp.155-174. 〈http://link.springer.com/article/10.1007%2Fs12083-012-0137-7〉. 〈10.1007/s12083-012-0137-7〉. 〈hal-00786438〉

Partager

Métriques

Consultations de la notice

546

Téléchargements de fichiers

368