Secure and accurate network coordinate systems.
2011-05
Loading...
View/Download File
Persistent link to this item
Statistics
View StatisticsJournal Title
Journal ISSN
Volume Title
Title
Secure and accurate network coordinate systems.
Authors
Published Date
2011-05
Publisher
Type
Thesis or Dissertation
Abstract
Network coordinate systems allow a node to estimate the network latency between any pair of nodes on the Internet, without having to directly contact the nodes. Existing network coordinate systems have been shown to be very accurate in predicting network distances, and efficient with low computational and communication overhead. However, a malicious node participating in the system can lie about either its network coordinates or its network latency to other nodes, with the end result being to disrupt the whole system, making it inaccurate in predicting network latencies, or isolating targeted victims from the rest of the network. Over the past few years, several schemes have been proposed to secure network coordinate systems. They can be categorized in two: 1) statistical methods that try to filter out malicious peers, and 2) non-statistical methods such as reputation systems to ensure that nodes' reported coordinates are correct and verified.
The main contributions of this thesis are to 1) introduce a new attack, the Frog-Boiling attack that bypasses all the "secure" schemes previously designed, 2) define a security model and realistic threat model, 3) show how insecure network coordinates can be mis-used to attack a real application, such as hijacking the routing layer of the Vuze BitTorrent client, and 4) propose two secure designs; the first one, Treeple is provably secure under our model while providing accurate estimations, and the second scheme, KoNKS is secure on an average-case but provides a completely decentralized solution to network coordinates, and can be used as a "base" for existing secure network coordinate schemes.
Description
University of Minnesota Ph.D. dissertation. May 2011. Major: Computer science. Advisor:Nicholas Hopper. 1 computer file (PDF); xi, 157 pages.
Related to
Replaces
License
Collections
Series/Report Number
Funding information
Isbn identifier
Doi identifier
Previously Published Citation
Suggested citation
Chan-Tin, D. Eric. (2011). Secure and accurate network coordinate systems.. Retrieved from the University Digital Conservancy, https://hdl.handle.net/11299/107725.
Content distributed via the University Digital Conservancy may be subject to additional license and use restrictions applied by the depositor. By using these files, users agree to the Terms of Use. Materials in the UDC may contain content that is disturbing and/or harmful. For more information, please see our statement on harmful content in digital repositories.