Peer-to-peer overlays for real-time communication: Security issues and solutions

IEEE Communications Surveys and Tutorials

Volumn 11, Issue 1, 2009, Pages 4-12

  Chopra, Dhruv ^a   Schulzrinne, Henning ^a   Marocco, Enrico ^b   Ivov, Emil ^c  

^a Columbia University ^*  (United States)

^b TELECOM ITALIA   (Italy)

^c UNIVERSITÉ DE STRASBOURG   (France)

Author keywords

DHT; P2P; P2PSEC; P2PSIP; PCAN; Peer to peer; Real time communications; RTC; Security; VoIP

Indexed keywords

DHT; P2P; P2PSEC; P2PSIP; PCAN; PEER-TO-PEER; REAL-TIME COMMUNICATIONS; RTC; SECURITY; VOIP;

DISTRIBUTED COMPUTER SYSTEMS; INTERNET TELEPHONY; VOICE/DATA COMMUNICATION SYSTEMS;

COMMUNICATION;

EID: 70449370459     PISSN: None     EISSN: 1553877X     Source Type: Journal    
DOI: 10.1109/SURV.2009.090102     Document Type: Article

References (53)

1. "Napster," http://www.napster.com/.
2. "Kazaa," http://www.kazaa.com/.
3. "Bittorrent-what is a tracker?" http://support.bittorrent.com/.
4. S. Androutsellis-Theotokis and D. Spinellis, "A survey of peer-to-peer content distribution technologies," ACM Comput. Surv., vol.36, no.4, pp. 335-371, 2004.
5. "Skype," http://www.skype.com/.
6. K. Singh and H. Schulzrinne, "Peer-to-peer internet telephony using SIP," International Workshop, Network and Operating System support for Digital Audio and Video, Jun. 2005.
7. "Joost," http://www.joost.com.
8. "Coolstreaming," http://www.coolstreaming.us.
9. S. Baset and H. Schulzrinne, "An analysis of the skype peer-to-peer internet telephony protocol," Infocom, April 2006.
10. J. A. Pouwelse, P. Garbacki, D. H. J. Epema, and H. J. Sips, "The bittorent P2P file-sharing system: Measurements and analysis," 4th International Workshop on Peer-to-Peer Systems, Feb. 2005.
11. D. S. Wallach, "A survey of peer-to-peer security issues," International Symposium on Software Security, pp. 42-57, 2002. [Online]. Available: http://www.cs.rice.edu/dwallach/pub/tokyo-p2p2002.pdf
12. Y. Kim, D. Mazzocchi, and G. Tsudik, "Admission control in peer groups," Second IEEE International Symposium on Network Computing and Applications, Apr 2003.
13. I. Stoica, R. Morris, D. Karger, M. F. Kaashoek, and H. Balakrishnan, "Chord: A scalable peer-to-peer lookup service for internet applications," SIGCOMM, 2001.
14. P. Maymounkov and D. Mazi, "Kademlia: A peer-to-peer information system based on the xor metric," First International Workshop on Peerto-Peer Systems, Mar 2002.
15. A. Rowstron and P. Druschel, "Pastry: Scalable, distributed object location and routing for large-scale peer-to-peer systems," 18th IFIP/ACM International Conference on Distributed Systems Platforms (Middleware 2001), Nov 2001.
16. S. Ratnasamy, P. Francis, M. Handley, R. Karp, and S. Shenker, "A scalable content-addressable network," SIGCOMM, 2001.
17. A. McCue, "Bookie reveals 100,000 cost of denial-ofservice extortion attacks," silicon.com, 2004. [Online]. Available: http://software.silicon. com/security/0,39024655,39121278,00.htm
18. E. Sit and R. Morris, "Security considerations for peer-to-peer distributed hash tables," 1st International Workshop on Peer-to-Peer Systems, March 2002.
19. J. Liang, R. Kumar, Y. Xi, and K. Ross, "Pollution in p2p file sharing systems," Infocom, Mar 2005.
20. J. R. Douceur, "The sybil attack," Revised paper, 1st International Workshop. Peer-to-Peer Systems, Lecture Notes in Computer Science, vol.2429, Mar 2002.
21. F. 180-1, "Secure hash standard," US Department of Commerce / NIST, National Technical Information Service, Apr 1995.
22. H. Rowaihy, W. Enck, P. McDaniel, and T. L. Porta, "Limiting sybil attacks in structured peer-to-peer networks," Technical Report NASTR-0017-2005, Network and Security Research Center, Department of Computer Science and Engineering, Jul 2005.
23. N. Saxena, G. Tsudik, and J. H. Yi, "Admission control in peer-to-peer: Design and performance evaluation," Security of Ad Hoc and Sensor Networks, 2003.
24. J. Kong, P. Zerfos, H. Luo, S. Lu, and L. Zhang, "Providing robust and ubiquitous security support for MANET," International Conference on Network Protocols, Nov 2001.
25. K. Ohta, S. Micali, and L. Reyzin, "Accountable subgroup multisignatures," ACM conference on Computer and Communications Security, Nov 2001.
26. L. von Ahn, M. Blum, and J. Langford, "Telling humans and computers apart automatically," Commun. ACM, vol.47, no.2, pp. 56-60, 2004.
27. T. Condie, V. Kacholia, S. Sankararaman, J. M. Hellerstein, and P. Maniatis, "Maelstorm: Churn as shelter," University of California Berkeley, Technical report UCB/EECS-2005-11, Nov 2005.
28. C. Scheideler, "How to spread adversarial nodes?; Rotate!" ThirtySeventh Annual ACM Symposium on Theory of Computing, May 2005.
29. G. Danezis, C. Lesniewski-Laas, M. F. Kaashoek, and R. Anderson, "Sybil-resistant DHT routing," Tenth European Symposium on Research in Computer Security, vol.3679, Sep 2005.
30. H. Yu, M. Kaminsky, P. Gibbons, and A. Flaxman, "SybilGuard: Defending against sybil attacks via social networks," Proceedings of the ACM SIGCOMM Conference on Computer Communications (SIGCOMM 2006), Sep 2006.
31. M. Castro, P. Druschel, A. Ganesh, A. Rowstron, and D. S. Wallach, "Secure routing for structured peer-to-peer overlay networks," 5th Usenix Symposium on Operating Systems Design and Implementation, Dec 2002.
32. W.-K. Poon and R. K. C. Chang, "Robust forwarding in structured peerto-peer overlay networks," SIGCOMM, August 2004.
33. E. Uzun, M. R. Pariente, and A. A. Selpk, "A reputation-based trust management system for P2P networks," International Symposium on Cluster Computing and the Grid, Apr 2004.
34. E. Damiani, D. C. Vimercati, S. Paraboschi, P. Samarati, and F. Violante, "A reputation-based approach for choosing reliable resources in peer-topeer networks," Conference on Computer and Communications Security, Nov 2002.
35. S. Y. Lee, O.-H. Kwon, J. Kim, and S. J. Hong, "A reputation management system in structured peer-to-peer networks," Proc. 14th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprise, 2005.
36. S. D. Kamvar, H. Garcia-Molina, and M. T. Schlosser, "The eigentrust algorithm for reputation management in P2P networks," 12th international conference on World Wide Web, May 2003.
37. T. H. Haveliwala and S. D. Kamvar, "The second value eigenvalue of the google matrix," technical report, 2003.
38. X. Zhang, S. Chen, and R. Sandhu, "Enhancing data authenticity and integrity in P2P systems," Internet Computing, Sep. 2005.
39. S. Marti, P. Ganesan, and H. Garcia-Molina, "SPROUT: P2P routing with social networks," First International Workshop on Peer-to-Peer and Databases, Mar 2004.
40. "Peer-to-peer session initiation protocol (P2PSIP) IETF working group." [Online]. Available: http://ietf.org/html.charters/p2psip-charter. html
41. S. Baset and H. Schulzrinne, "Peer-to-peer protocol (P2PP)," InternetDraft draft-baset-p2psip-p2pp-00 (Work in Progress), Jul. 2007. [Online]. Available: http://tools.ietf.org/html/draft-baset-p2psip-p2pp-00
42. E. Marocco and E. Ivov, "XPP extensions for implementing a passive P2PSIP overlay network based on the CAN distributed hash table," Internet-Draft draft-marocco-p2psip-xpp-pcan-00 (Work in Progress), Jun. 2007. [Online]. Available: http://tools.ietf.org/html/draft-maroccop2psip-xpp-pcan-00
43. D. Bryan, M. Zangrilli, and B. Lowekamp, "Resource location and discovery," Internet-Draft draft-bryan-p2psip-reload-01 (Work in Progress), Jul. 2007. [Online], Available: http://tools.ietf.org/html/draftbryan-p2psip- reload-01
44. E. Cooper, A. Johnston, and P. Matthews, "A distributed transport function in P2PSIP using HIP for multi-hop overlay routing," InternetDraft draft-matthews-p2psip-hip-hop-00 (Work in Progress), Jun. 2007. [Online]. Available: http://tools.ietf.org/html/draft-matthews-p2psip-hiphop-00
45. C. Jennings, J. Rosenberg, and E. Rescorla, "Address settlement by peer to peer," Internet-Draft draft-jennings-p2psip-asp-00 (Work in Progress), Jul. 2007. [Online], Available: http://tools.ietf.org/html/ draftjennings-p2psip-asp-00
46. J. Seedorf, "Security challenges for peer-to-peer SIP," IEEE Network, vol.20, 2006.
47. P. Zimmermann, "Pretty good privacy: public key encryption for the masses," Building in big brother: the cryptographic policy debate, pp. 93-107, 1995.
48. J. Rosenberg, H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Sparks, M. Handley, and E. Schooler, "SIP: Session initiation protocol," RFC 3261 (Draft Standard), Jun. 2002. [Online], Available: http://www.ietf.org/rfc/rfc3261.txt
49. V. Gurbani, F. Audet, and D. Willis, "The SIPSEC uniform resource identifier (URI)," Internet-Draft draft-gurbani-sip-sipsec-01 (Work in Progress), Jun. 2007. [Online], Available: http://tools.ietf.org/html/ draftgurbani-sip-sipsec-01
50. E. Rescorla, "HTTP over TLS," RFC 2818 (Informational), May 2000. [Online], Available: http://www.ietf.org/rfc/rfc2818.txt
51. J. Seedorf, "Using cryptographically generated SIP-URIs to protect the integrity of content in P2P-SIP," VoIP Security Workshop, June 2006.
52. M. Baugher, D. McGrew, M. Naslund, , E. Carrara, and K. Norrman, "The secure real-time transport protocol (SRTP)," RFC 3711 (Draft Standard), Mar. 2004. [Online], Available: http://www.ietf.org/rfc/rfc3711.txt
53. R. Baumann, S. Cavin, and S. Schmid, "Voice over IP - security and SPIT," Swiss Army, FU Br 41, KryptDet Report, University of Berne, Sept 2006.