Title :
Limiting Sybil Attacks in Structured P2P Networks
Author :
Rowaihy, Hosam ; Enck, William ; McDaniel, Patrick ; La Porta, Thomas
Author_Institution :
Pennsylvania State Univ., University Park
Abstract :
One practical limitation of structured peer-to-peer (P2P) networks is that they are frequently subject to Sybil attacks: malicious parties can compromise the network by generating and controlling large numbers of shadow identities. In this paper, we propose an admission control system that mitigates Sybil attacks by adaptively constructing a hierarchy of cooperative peers. The admission control system vets joining nodes via client puzzles. A node wishing to join the network is serially challenged by the nodes from a leaf to the root of the hierarchy. Nodes completing the puzzles of all nodes in the chain are provided a cryptographic proof of the vetted identity. We evaluate our solution and show that an adversary must perform days or weeks of effort to obtain even a small percentage of nodes in small P2P networks, and that this effort increases linearly with the size of the network. We further show that we can place a ceiling on the number of IDs any adversary may obtain by requiring periodic reassertion of the IDs continued validity.
Keywords :
client-server systems; cryptography; peer-to-peer computing; telecommunication congestion control; telecommunication security; Sybil attacks; admission control system; client puzzles; cryptographic proof; peer-to-peer networks; structured P2P networks; Admission control; Authentication; Communications Society; Computer science; Content based retrieval; Intrusion detection; Peer to peer computing; Performance evaluation; Public key cryptography; Robustness;
Conference_Titel :
INFOCOM 2007. 26th IEEE International Conference on Computer Communications. IEEE
Conference_Location :
Anchorage, AK
Print_ISBN :
1-4244-1047-9
DOI :
10.1109/INFCOM.2007.328
