摘要
基于DHT(distributed Hash table)的分布式检索和路由算法凭借其良好的分布性、自组织性、可扩展性等优点,正成为国际上结构化P2P(peer-to-peer)网络研究和应用的热点.但相对于传统的C/S(client/server)网络,P2P网络的非中心化特点以及网络中节点较强的自治性和动态性,使得节点实施恶意行为的可能性大大增加,这令DHT对节点安全性的要求很难得到满足.本文提出了一种基于多维映射机制的安全DHT协议,该机制通过对标识符进行按组划分,将P2P网络中的节点映射到一个多维空间,并通过设计合理的路由算法,使安全工作定位到相对简单的节点区域内进行.理论分析和实验结果表明,本机制能够简化现有DHT安全机制,有效抑制恶意路由行为,提高资源搜索成功率.
Distributed search and routing algorithms based on the DHT (distributed Hash table) protocol have attracted considerable attention in structured P2P (peer-to-peer) research as a result of favorable properties such as distribution, self-organization, and high scalability. Compared with a traditional C/S (client/server) network, tile probability of peers initiating malicious behavior increases dramatically because of their self-gow-'rning and dynamic characteristics, which also make it harder to satisfy the peers' security required by DHT. In this paper, we propose a new secure DHT protocol based on a multidimensional mapping nmchanism. This mechanism nmps peers to a multidimensional space by dividing the identifiers into groups. Moreover, a series of secure methods and routing algorithms are provided to achieve secure DHT in smaller spaces. Compared with state-of-the-art approaches, the theoretical analysis and experiinental results show that the multidimensional mappillg mechanism can effectively improve the average success rate of a resource search by inhibiting malicious behavior.
出处
《中国科学:信息科学》
CSCD
2013年第3期343-360,共18页
Scientia Sinica(Informationis)
基金
国家自然科学基金(批准号:60973140
61170276)
江苏省高校自然科学研究重大项目(批准号:12KJA520003)资助
关键词
多维映射
分布式Hash表
结构化P2P网络
路由攻击
安全
multidimensional mapping, DHT (distributed Hash table), structured P2P (peer-to-peer) network,routing attack, security