Efficient DHT attack mitigation through peers' ID distribution - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2010

Efficient DHT attack mitigation through peers' ID distribution

Résumé

We present a new solution to protect the widely deployed KAD DHT against localized attacks which can take control over DHT entries. We show through measurements that the IDs distribution of the best peers found after a lookup process follows a geometric distribution. We then use this result to detect DHT attacks by comparing real peers' ID distributions to the theoretical one thanks to the Kullback-Leibler divergence. When an attack is detected, we propose countermeasures that progressively remove suspicious peers from the list of possible contacts to provide a safe DHT access. Evaluations show that our method detects the most efficient attacks with a very small false-negative rate, while countermeasures successfully filter almost all malicious peers involved in an attack. Moreover, our solution completely fits the current design of the KAD network and introduces no network overhead.
Fichier principal
Vignette du fichier
HotP2P10-KAD_DHT_attack_mitigation-cholez.pdf (262.33 Ko) Télécharger le fichier
HotP2P10_talk-KAD_DHT_attack_mitigation-cholez.pdf (589.85 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Format : Autre

Dates et versions

inria-00490509 , version 1 (08-06-2010)

Identifiants

  • HAL Id : inria-00490509 , version 1

Citer

Thibault Cholez, Isabelle Chrisment, Olivier Festor. Efficient DHT attack mitigation through peers' ID distribution. Seventh International Workshop on Hot Topics in Peer-to-Peer Systems - HotP2P 2010, IEEE International Parallel & Distributed Processing Symposium, Apr 2010, Atlanta, United States. ⟨inria-00490509⟩
224 Consultations
805 Téléchargements

Partager

Gmail Facebook X LinkedIn More