Query-flood DoS attacks in Gnutella

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2002, Pages 181-192

  Daswani, Neil ^a   Garcia Molina, Hector ^a  

^a Stanford University   (United States)

Author keywords

Denial of service; Peer to peer; Security

Indexed keywords

ALGORITHMS; COMPUTER SIMULATION; DISTRIBUTED COMPUTER SYSTEMS; MATHEMATICAL MODELS; QUERY LANGUAGES; SECURITY OF DATA; TELECOMMUNICATION TRAFFIC;

DENIAL-OF-SERVICE ATTACKS; PEER-TO-PEER NETWORKS; QUERY FLOODS;

NETWORK PROTOCOLS;

EID: 0038687704     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/586110.586136     Document Type: Conference Paper

References (40)

1. Cert advisory ca-2000-01 denial-of-service developments. http://www.cert.org/advisories/CA-2000-01.html, January 2000.
2. Edward Amoroso. A policy model for denial of service. In Proc. Computer Security Foundations Workshop III, pages 110-114, Franconia, NH USA, June 1990. IEEE Computer Society Press.
3. lcmp traceback messages. http://www.silicondefense.com/research/itrex/archive/tracing-papers/draft-bello vin-itrace-00.txt.
4. Arturo Crespo and Hector Garcia-Molina. Routing indexes for peer-to-peer systems. Technical report, Stanford Univ., CS Dept., 2001.
5. David Ratajczak, Dahlia Malkhi, Moni Naor. Viceroy: A scalable and dynamic lookup network. Proc. ACM PODC '02, August 2002.
6. R. Dingledine, M. Freedman, and D. Molnar. The free haven project: distributed anonymous storage service. Proc. of the Workshop on Design Issues in Anonymity and Unobservability, Berkeley, CA, USA. Springer: New York (2001)., 2001.
7. P. Ferguson and D. Senie. Network ingress filtering: Defeating denial of service attacks which employ ip source address spoofing. In IETF RFC 2267, 1998.
8. Lee Garber. Denial-of-service attacks rip the internet. Computer, 12-17, April 2000.
9. E. A. Hyden. Operating system support for quality of service. Ph. D. Thesis, University of Cambridge, 1994.
10. Kazaa home page. http://www.kazaa.com/.
11. Angelos D. Keromytis, Vishal Misra, and Dan Rubenstein. Secure overlay services. In Proc. of the ACM SIGCOMM Conference, August 2002.
12. R. Lethin. Reputation. In Peer-to-peer: Harnessing the power of disruptive technologies. ed. Andy Oram, O'Reilly and Associates, March 2001.
13. Limewire home page. http://www.limewire.com/.
14. Aviel D. Rubin, Marc Waldman, and Lorrie Faith Cranor. Publius: A robust, tamper-evident, censorship-resistant, web publishing system. In Proc. 9th USENIX Security, August 2000.
15. Mojo nation technical overview home page. http://www.mojonation.net/docs/technical_overview.shtml.
16. D. Moore, G. Voelker, and S. Savage. Inferring internet denial of service activity. In Proc. 2001 USENIX Security, Washington D.C., August 2001.
17. Morpheus home page. http://www.musiccity.com.
18. R. M. Néedham. Denial of service. In Proc. 1st ACM CCS, pg 151-153, Fairfax, Virginia, November 1993.
19. Roger M. Needham. Denial of service: an example. Comm. of the ACM, 37(11):42-46, 1994.
20. Peter G. Neumann. Inside risks: denial-of-service attacks. Comm. of the ACM, 43(4):136-136, 2000.
21. Flow control algorithm for distributed 'broadcast-route' networks with reliable transport links. http://www.grouter.net/gnutella/flowcntl.htm.
22. T. Ptacek and T. Newsham. Insertion, evasion, and denial of service: Eluding network intrusion detection. Technical report, Secure Networks, Inc., January 1998.
23. N. Daswani and H. Garcia-Molina. Query-flood DoS Attacks in Gnutella Networks (Extended Version). Technical Report, Stanford Univ. CS Dept.
24. S. Ratnasamy, P. Francis, M. Handley, R. Karp, and S. Shenker. A scalable content-addressable network. ACM SIGCOMM, 2001.
25. Reputation technologies home page. http://reputation.com.
26. R. Dingledine. The free haven project: Design and deployment of an anonymous secure data haven. MIT Masters Thesis May 2000.
27. Sachrifc: Simple flow control for gnutella. http://www.limewire.com/developer/sachrifc.html.
28. A. Rowstron, P. Druschel. Pastry: Scalable distributed object location and routing for largescale peer-to-peer systems. In Proc. IFIP/ACM Middleware, Heidelberg, Germany, November 2001.
29. C. L. Schuba, I. V. Krsul, M. G. Kuhn, E. H. Spafford, A. Sundaram, and D. Zamboni. Analysis of a denial of service attack on TCP. In Proc. 1997 IEEE Symposium on Security and Privacy, pages 208-223. IEEE Computer Society Press, May 1997.
30. Ultrapeers: Another step towards gnutella scalability. http://groups.yahoo.com/group/the_gdf/files/Proposals/Ultrapeer/Ultrapeers.h tml.
31. A. C. Snoeren, C. Partridge, L. A. Sanchez, C. E. Jones, F. Tchakountio, S. T. Kent, and W. T. Strayer. Hash-based ip traceback. In Proc. of the ACM SIGCOMM 2001 Conference on Applications, Technologies, Architectures, and Protocols for Computer Communication, August 2001., 2001.
32. O. Spatscheck and L. L. Peterson. Defending against denial of service attacks in scout. In Operating Systems Design and Implementation, pages 59-72, 1999.
33. A. Karlin, S. Savage, D. Wetherall, and T. Anderson. Network support for ip traceback. In ACM/IEEE Transactions on Networking, 9(3), June 2001.
34. A. Karlin, S. Savage, D. Wetherall and T. Anderson. Practical network support for ip traceback. In Proc. 2000 ACM SIGCOMM Conference, Stockholm, Sweden, August 2000.
35. I. Stoica, R. Morris, D. Karger, M. Kaashoek, and H. Balakrishnan. Chord: A scalable peer-to-peer lookup service for internet applications. Technical Report TR-819, MIT, March 2001.
36. B. Yang and H. Garcia-Molina. Designing a super-peer network. Submitted for publication.
37. Beverly Yang and Hector Garcia-Molina. Efficient search in peer-to-peer networks. Technical report, Stanford Univ., CS Dept., 2001.
38. C. Yu and V. Gligor. A formal specification and verification method for the prevention of denial of service. In Proc. 1988 IEEE Symposium on Security and Privacy, pages 187-202, Oakland, CA. IEEE Computer Society Press. 117, 1988.
39. B. Zhao, J. Kubiatowicz, and A. Joseph. Tapestry: An infrastructure for fault-resilient wide-area location and routing. Technical Report UCB//CSD-01-1141, U. C. Berkeley, April 2001.
40. L. Peterson and B. Davie. Computer Networks: A Systems Approach. Morgan Kaufman: SF (2000).