Peer-to-peer overlays for real-time communication: security issues and solutions

Chopra, Deepak; Schulzrinne, Henning; Marocco, Enrico; Ivov, Emil

doi:10.1109/surv.2009.090102

Cited by 32 publications

(15 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…These SIP ordinary peers can typically send malicious registration messages to SIP super peers in order to pollute the DHT. As highlighted in [5] major risks in a P2PSIP network are denial of service (DoS) and call hijacking. In the context of our work, we will focus on two attack scenarios corresponding to the first category.…”

Section: A Attack Sources and Scenariosmentioning

confidence: 99%

“…We can typically consider (1) attacks targeting the P2P overlay network, such as sybil attacks, routing attacks and eclipse attacks, (2) attacks related to the signaling protocol, such as caller ID spoofing, call hijacking, and SPIT attacks, and (3) attacks targeting the media transport protocols, such as eavesdropping attacks. A large variety of techniques has already been proposed for dealing with them [5]. In the area of P2P overlay networks, several work target identity assignment attacks in DHTs.…”

Section: A Attack Sources and Scenariosmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic exposure control in P2PSIP networks

Dabbebi

Badonnel

Festor

2012

2012 IEEE Network Operations and Management Symposium

View full text Add to dashboard Cite

Abstract-Voice over IP services have undergone a large-scale deployment thanks to the development of high-speed broadband access and the standardization of dedicated signaling protocols. They offer new opportunities, in particular in the context of peer-to-peer networks. However they are exposed to multiple security attacks due to a lower confinement in comparison to traditional networks. Protection mechanisms are available, but may significantly impact the service performance. We propose in this paper a risk management strategy for dynamically adapting the exposure of P2PSIP networks. We describe the underlying mechanisms for mitigating risks based on a portfolio of countermeasures. We also detail the mathematical modeling which supports our solution based on the analysis of a case study. Finally we quantify the benefits and limits of this approach through an extensive set of experiments performed with the OMNET++ simulator.

show abstract

Section: A Attack Sources and Scenariosmentioning

confidence: 99%

Section: A Attack Sources and Scenariosmentioning

confidence: 99%

Dynamic exposure control in P2PSIP networks

Dabbebi

Badonnel

Festor

2012

2012 IEEE Network Operations and Management Symposium

View full text Add to dashboard Cite

show abstract

“…Thus, P2P-based voice and video streaming applications impose some novel security research challenges. While there exist quite a few works on securing P2P-networks in general, only very few papers consider the unique security challenges for running real-time communication applications over a P2P-substrate [12] [27].…”

Section: Motivationmentioning

confidence: 99%

“…Furthermore, a (MIX-like) pseudonimity service is envisioned to protect the privacy of callers. Similarly, Chopra et al provide a survey on security aspects for P2P-based VoIP applications and briefly discuss potential solutions on a general level [12]. Besides the approaches already mentioned in [27], they regard a PGP-like web-of-trust among users and SIP end-to-end encryption as promising approaches but do not present detailed algorithms.…”

Section: Existing Security Approachesmentioning

confidence: 99%

Security Issues for P2P-Based Voice- and Video-Streaming Applications

Seedorf¹

2009

iNetSec 2009 – Open Research Problems in Network Security

View full text Add to dashboard Cite

Abstract. P2P computing offers a new interesting field for security researchers. Being highly distributed and lacking centralised, trusted entities for bootstrapping security mechanisms, these systems demand novel approaches for decentralised security solutions.Recently, a new class of P2P-applications has arisen: P2P-based voice and video streaming systems. The properties of these novel applications impose new, interesting security challenges which have only been started to be addressed by researchers. This paper presents a summary of existing work in the area, derives and discusses open research problems, and finally outlines approaches towards potential solutions for securing P2P-based voice and video streaming applications. MotivationFor many years, distributed computer systems have been dominated by the client-server paradigm. In recent years, however, a new paradigm appeared for distributed systems: Peer-to-Peer (P2P) computing. In networks based on this new paradigm, all entities are considered equal and provide equivalent services to other entities. At the same time, all entities can use services from all other participants of the network.P2P computing offers a new interesting field for security researchers. Lacking centralised, trusted entities for bootstrapping security mechanisms, these systems demand novel approaches for decentralised security solutions. Lately, a new class of P2P-applications has arisen: P2P-based voice and video streaming systems. Examples for such systems are P2P-Voice-over-IP applications like Skype [32] or P2PSIP [30] as well as P2P-video-streaming applications like PPlive [22] or Zattoo [37]. We subsume these applications as Real-Time Communication Applications (RTC-applications for short).RTC-applications have some important differences to other P2P-applications, e.g., file-sharing. These differences result in specific security requirements. For instance, users expect to reach a telephone callee within seconds, or to switch a TV-channel within milliseconds. In P2P-networks infiltrated by attackers (which can drop or misroute messages), it is challenging to meet these real-time requirements. In contrary, for filesharing it is perfectly acceptable for the user if it takes

show abstract

“…Peer-to-Peer (P2P) networks, grid networks, and cloud computing using overlay technology are particularly essential today. Internet telephony, file sharing, and IPTV services have been deployed based on the P2P technologies [2], [3] while large-scale computing relies on the grid computing and cloud computing technologies [4], [5].…”

Section: Introductionmentioning

confidence: 99%

Designing P2P Networks Tolerant to Attacks and Faults Based on Bimodal Degree Distribution

Suto¹,

Nishiyama²,

Shen³

et al. 2012

JCM

View full text Add to dashboard Cite

Abstract-Recently, in contrast with the centralized networks (e.g., traditional client/server systems), the distributed networks such as Peer-to-Peer (P2P) networks and grid networks have attracted much attention due to their scalability. While the distributed networks have the advantage of allowing the node(s) to join or leave the network easily, the issue of lack of resiliency to both attacks and faults still remains. In this paper, we classify the existing distributed networks based on their degree distributions. Then, we demonstrate that they are not resilient to attacks and/or faults. For example, unstructured P2P networks, which have a power-law degree distribution, are vulnerable to attacks such as DOS. To address and resolve this issue, we propose a method to construct a network following bimodal degree distribution, which is robust to deal with both attacks and faults. Performance evaluation is conducted through computer simulations, which show that the proposed method can achieve higher resilience compared with other existing networking approaches.Index Terms-P2P networks, overlay networks, attack and fault tolerance, degree distribution.

show abstract

Peer-to-peer overlays for real-time communication: security issues and solutions

Cited by 32 publications

References 19 publications

Dynamic exposure control in P2PSIP networks

Dynamic exposure control in P2PSIP networks

Security Issues for P2P-Based Voice- and Video-Streaming Applications

Designing P2P Networks Tolerant to Attacks and Faults Based on Bimodal Degree Distribution

Contact Info

Product

Resources

About