针对P2P直播系统的Eclipse延迟攻击方法研究

Defense of P2P live video systems facing Eclipse-delay attack

导出

摘要 P2P直播系统在当今互联网上的应用越来越广泛,相对于P2P文件共享系统,其对数据传输的实时性要求更高,因此对该类系统实时性的破坏,即延迟攻击,产生的危害极大。通过分析相关理论模型,该文指出P2P直播系统在实时性方面存在安全脆弱性,基于Eclipse攻击提出了No-Offer、Delay-Chunk和No-Chunk延迟攻击方法,并提出了基于信誉机制的路由表清洗防御策略。在PlanetLab平台上基于PeerStreamer实施了真实的互联网实验,证明了Eclipse延迟攻击对当前系统的危害和该文防御策略的有效性。 P2P live video systems are widely used in today＇s Internet. Compared with eMule/BitTorrent and other traditional P2P file-sharing systems, a P2P live video system has higher requirements on real time data, which becomes vulnerable weakness. Delay attack, with strong concealment, is potentially lethal for large P2P video broadcasting systems. Theoretical security threats of popular P2P live video systems were analyzed to propose three types of delay attack based on Eclipse attack, No-Offer attack, Delay-Chunk attack, and No-Chunk attack, with a high-availability defense strategy against delay attack being developed. Experiments were made on PlanetLab based on PeerStreamer, which proves the impact of delay attack and the effectiveness of the developed defense strategy.

作者韩心慧李晨肖祥全刘丙双叶佳奕

机构地区北京大学计算机科学技术研究所

出处《清华大学学报（自然科学版）》 EI CAS CSCD 北大核心 2016年第1期58-65,共8页 Journal of Tsinghua University(Science and Technology)

基金国家自然科学基金资助项目(61572149)

关键词 Eclipse攻击 P2P 直播系统延迟攻击 Eclipse attack P2P live video system delay attack

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献28

1Deshpande H, Bawa M, Gareia-Molina H. Streaming live media over a peer-to-peer network [R]. 2001.
2Jannotti J, Gifford D K, Johnson K L, et al. Overcast: Reliable multicastlng with on overlay network [C]// Proceedings of the 4th Conference on Symposium on Operating System Design & Implementation Volume 4. Berkeley: USENIX Association, 2000: 14- 14.
3Rejaie R, Ortega A. PALS: Peer-to-peer adaptive layered streaming [C]// Proceedings of the 13th International Workshop on Network and Operating Systems Support for Digital Audio and Video. New York: ACM, 2003: 153-161.
4Tran D A, Hun K A, Do T. Zigzag: An efficient peer-to-peer scheme for media streaming [C]// INFOCOM 2003. Twenty-Second Annual Joint Conference of the IEEE Computer and Communications. Piscataway: IEEE Societies, 2003, 2: 1283-1292.
5Castro M, Druschel P, Kermarrec A M, et al. SplitStream: High-bandwidth multicast in cooperative environments [J]. ACM SIGOPS Operating Systems Review, 2003, 37(5): 298 - 313.
6Horvath A, Telek M, Rossi D, et al. Dissecting pplive, sopcast, tvants [J]. submitted to ACM Conext, 2008.
7Vu L, Gupta I, Liang J, et al. Mapping the PPLive network: Studying the impacts of media streaming on P2P overlays [Z]. 2006.
8Jia J, Li C, Chen C. Characterizing PPStream across internet [C]// Network and Parallel Computing Workshops, IFIP International Conference on. Piscataway: IEEE, 2007: 413- 418.
9Su X, Chang L. A measurement study of PPStream [C]// Communications and Networking in China, Third International Conference on. Piscataway: IEEE, 2008: 1162 - 1166.
10Douceur J R. The sybil attack [M]// Peerto-Peer Systems. Springer Berlin Heidelberg, 2002 : 251 - 260.

二级参考文献16

1Urdaneta G, Pierre G, Steen M. A survey of DHT security techniques [J]. ACM Computing Surveys, 2009, 43(2):8.
2Castro M, Druschel P, Ganesh A, et al. Secure routing for structured Peer-to-Peer overlay networks [C]// Proceedings of the 5th Symposium on Operating Systems Design and Implementation. New York: Association for Computing Machinery, 2002:299 - 314.
3Douceur J. The Sybil attack [C]// Proceedings of the 1st International Workshop on Peer to-Peer Systems. London, UK: Springer Verlag, 2002: 251-260.
4Dinger J, Hartenstein H. Defending the Sybil attack in P2P networks: Taxonomy, challenges, and a proposal for selbregistration [C]// Proceedings of the 1st International Conference on Availability, Reliability and Security. Washington DC, USA: IEEE Computer Society Press, 2006 : 756 -763.
5Awerbuch B, Scheideler C. Towards a scalable and robust DHT [C]// Proceedings of the 18th Annual ACM Symposium on Parallelism in Algorithms and Architecture. New York, USA: Association for Computing Machinery, 2006: 318-327.
6Condie T, Kacholia V, Sankararaman S, et al. Induced churn as shelter from routing table poisoning[C]// Proceedings of the 13th Annual Network and Distributed System Security Symposium. San Diego, USA: The Internet Society, 2006.
7Hildrum K, Kubiatowicz J. Asymptotically efficient approaches to fault tolerance in Peer to Peer networks [C]// Proceedings of the 17th International Symposium on Distributed Computing Lecture. Berlin, Germany: Springer-Verlag, 2003:321-336.
8Maccari L, Rosi M, Fantacci R, et al. Avoiding eclipse attacks on Kad/Kademlia: An identity based approach [C]// Proceedings of the IEEE Communications. Piscataway International Conference USA: IEEE Press, 2009:.
9Singh A, Ngan T, Drushel P, et al. Eclipse attacks on overlay networks: Threats and defenses [C]//Proceedings of the 25th International Conference on Computer Communications. Barcelona, Spain: IEEE Press, 2006: 1 -12.
10Rhea S, Geels D, Roscoe T, et al. Handling churn in a DHT [C]// Proceedings of the Annual Conference on USENIX Annual Technical Conference. Berkeley, USA: USENIX Association, 2004 : 127 - 140.

1刘悦,李强,李舟军.P2P网络安全及防御技术研究综述[J].计算机科学,2013,40(4):9-13. 被引量：5
2邹维,张缘,张建宇,周模,刘丙双.DHT网络eclipse攻击[J].清华大学学报（自然科学版）,2011,51(10):1306-1311. 被引量：1
3苗邯军.基于仿真的P2P直播系统的研究[J].信息安全与技术,2011,2(8):77-80.
4刘敏霞,余杰,李强,陈志新.P2PSIP系统的路由表安全研究[J].计算机工程,2011,37(20):97-99.
5韩亚峰,董孝珍.一种基于激励机制的P2P流媒体数据传输策略[J].河南科技学院学报（自然科学版）,2013,41(5):63-67.
6卢良进,万健,徐向华.推拉结合的P2P直播系统研究与实现[J].计算机工程,2008,34(8):240-242. 被引量：2
7李晓林,王劲林,尤佳莉.P2P直播系统中节点启动过程优化[J].四川大学学报（工程科学版）,2013,45(4):117-123.
8康芳,杨志义,王道彬.一种P2P直播系统调度管理方法的设计与实现[J].信息安全与通信保密,2008,30(1):46-48. 被引量：2
9毕信民,吴杰,吕智慧,钟亦平.P2P流媒体直播系统服务鲁棒性保障机制[J].计算机工程,2008,34(24):221-224.
10危婷,邓光青,陈常嘉,李纯喜.一种新的P2P直播系统共享机制的测量、分析与建模[J].北京邮电大学学报,2011,34(6):59-63. 被引量：2

清华大学学报（自然科学版）

2016年第1期

浏览历史

内容加载中请稍等...

针对P2P直播系统的Eclipse延迟攻击方法研究

参考文献28

二级参考文献16

相关作者

相关机构

相关主题

浏览历史