structured overlays
play

Structured Overlays: Eclipse Attacks on Overlay Networks April - PowerPoint PPT Presentation

Jul 10, 2023 •416 likes •874 views

Structured Overlays: Eclipse Attacks on Overlay Networks April 28th, 2006 Wyman Park 4 th Floor Conference Room Presentation by: Dan Liu & Jay Zarfoss 1 The idea of churn as shelter from route poisoning attacks is an interesting, if

  1. Structured Overlays: Eclipse Attacks on Overlay Networks April 28th, 2006 Wyman Park 4 th Floor Conference Room Presentation by: Dan Liu & Jay Zarfoss 1

  2. “The idea of churn as shelter from route poisoning attacks is an interesting, if simple, idea.” 2

  3. “The ID of a node can’t be tied to actual data like files that would have to be changed at every epoch.” “On one hand, for distributed file systems and databases the cost of migrating data across nodes could be high, and induced churn may be inappropriate.” 3

  4. “ We would want the authors’ defensive scheme to be able to scale to the level of Kazaa and Napster.” Structured vs Unstructured overlays is not a fair comparison 4

  5. Thou shall not let nodes pick their own identifiers! Timeserver, timeserver, timeserver… Low hanging fruit “Each node randomly picks a fixed position in the epoch and computes everything (ID update, routing table removals, etc) related to this.” 5

  6. “My greatest complaint with the analysis is that they evaluate their system exclusively with a very powerful adversary.” 6

  7. “I would have liked to see a more detailed explanation of how the attack on periodic resets + update rate limitation works.” “…the major component of their approach is the rate limiting rather than the actual churn.” 7

  8. 8

  9. Extensions? “First, rather than storing only the first hops of queries, we store entire paths” “ We would first want to dissect an application for patterns in finding optimized routes.“ 9

  10. SimNet? “It would have been believable if they had used an established simulator renowned for its real-world network modeling, such as SimNet.” 10

  11. Motivation • Yesterday we looked at induced churn to defeat routing table poisoning • Can we defeat poisoning and still support the use of a highly optimized routing table? • What if we place restrictions on the degree of a node? 11

  12. Eclipse Attacks on Overlay Networks: Threats and Defenses Atul Singh, Tsuen Ngan, Peter Druschel, Dan Wallach Rice University IEEE Infocom 2006 12

  13. Pastry Node Review • Leaf Set • Routing Table • Neighborhood Set – Contains node ids and IP addresses of the nodes that are closest to the local node 13

  14. Notion of Eclipse Attack 33333333 O Good nodes see a controlled view of the overlay and have no method to detect this!!! 14

  15. Worst Case Scenario • Bootstrapping Process • Continually Spreading Over Time • Complete Control of Overlay – Arbitrary Denial of Service – Censorship Attack • Our threat model is to prevent this global attack on every neighbor set/routing table 15

  16. Eclipse Defenses • Centralized Membership Service • Stronger Structural Constraints • Proximity Constraints • Induced Churn ??? • Enforcing Degree Bounds • Anonymous Auditing 16

  17. More on Proximity Constraints • This defense assumes a small number of malicious nodes cannot be within a low network delay of all nodes (PNS Defense) These routing tables will tend to have more good entries 17

  18. Simple Observation 2 160 -1 O • Eclipse attackers will have a high in-degree in the overlay ~25 ~10 • Every other node has an average in degree 18

  19. 19 Bounds in the Overlay? Effect of Enforcing Degree Bounds How Do We Enforce

  20. Enforcing Degree Bounds • Could use a centralized membership service – Dedicated service keeps track of each overlay member’s degree – Single point of failure, availability, and scalability issues • Can we come up with a distributed mechanism where everyone checks each other’s back? 20

  21. Every Node Maintains a Backpointer List Routing Table 26 25 1 24 2 01aa2 3 23 02bb3 22 4 04de4 21 5 08f45 20 6 10667 19 2a534 7 18 8 4b99c 17 9 10 16 11 21 15 14 12 13

  22. Checking Backpointer Lists • Periodically, a node x challenges each of its neighbors for its backpointer list • If the list is too large or does not contain x, the audit fails and the node is removed • Periodically, a node x also checks its backpointer list to make sure each node on the list has a correct neighbor set/routing table size 22

  23. Fresh and Authentic Replies • Every node maintains a certificate that binds the node id to a public key • Node x includes a nonce in the challenge • The auditee sends back the nonce and digitally signs the response • Node x checks the signature and the nonce before accepting the reply How Can We Do This Anonymously? 23

  24. Use an Anonymizer Node • Good node x wants to audit node z via y – Case 1: z is malicious, y is correct – Case 2: z is malicious, y is malicious – Case 3: z is correct, y is correct – Case 4: z is correct, y is malicious How do we know if z x y z should pass or fail the audit? y’ 24

  25. Dissing a Good Node • Probability that a good node is considered malicious (Binomial Distribution) • Node considered malicious if it answers fewer than k out of n challenges correctly: ⎛ ⎞ − k 1 n ∑ − ⎜ ⎟ − i n i ( 1 f ) f ⎜ ⎟ ⎝ ⎠ i = i 0 • Example, assume f = .2, n = 24, k = 12 • Probability is less than 0.02% 25

  26. What If We Vary k? Probability that a Good Node is Considered Malicious 100 90 80 70 60 percent 50 40 30 20 10 0 12 13 14 15 16 17 18 19 20 21 22 23 24 k value 26

  27. Malicious Node Passing an Audit • r is the overload ratio • c is the probability a malicious node answers • For each challenge, four cases • With probability f, the anonymizer is colluding and the malicious node passes k • (1-f)c/r , random response includes auditor and malicious node passes • (1-f)c(1-1/r) , random response does not include auditor and malicious node fails • (1-f)(1-c) , malicious node does not respond ⎛ ⎞ n n ∑ ⎜ ⎟ − + − − − i n i [ f ( 1 f ) c / r ] [( 1 f )( 1 c )] ⎜ ⎟ ⎝ ⎠ i = 27 i k

  28. Malicious Node Passing an Audit • A malicious node passes an audit with probability 0.034 f = .20, n = 24, k = 12, r = 1.2 • A malicious node fails an audit with probability 0.966 • A good node passes an audit with probability .9998 (as we previously saw) 28

  29. Choosing the k Value Too many good nodes Good nodes tend fail and are to pass and are k = 12 considered considered good k = n/2 malicious 0 Too many mal Mal nodes k 24 nodes pass and tend to fail are considered and are good considered malicious 29

  30. Marking Malicious/Correct Suspicious • More malicious nodes make it harder to detect them • Correct nodes will also be marked as malicious • Parameters • k = n/2 • r = 1.2 30

  31. Picking the Anonymizer Node • (a) Randomly • (b) Node Closest to H(x) • (c) Random Node Among the L Closest to H(x) 31

  32. Evaluation Questions • How serious is the eclipse attack on structured overlays? • How effective is the PNS defense? • Is degree bounding a more effective defense? • How does it effect PNS performance? • Is distributed auditing effective and efficient at bounding node degrees? 32

  33. Experimental Setup • MSPastry – GT-ITM transit stub network topology – GT-ITM topology has a good separation of nodes in the delay space – Pair wise latency values for up to 10,000 real Internet nodes obtained with King tool – Pastry settings: b = 4, l = 16, f=0.2 33

  34. Know Your Enemy • Fraction of malicious nodes = .2 • Collude to maximize the number of router table entries referring to malicious nodes • Malicious nodes misroute join messages of correct nodes to each other • Malicious nodes set their routing tables to refer to good nodes whenever possible 34

  35. Effectiveness of PNS Defense • Malicious fraction in top row drops from 78% to 41% for a 10,000 node overlay • PNS not as effective in large overlays 35

  36. PNS with King Latencies PNS less effective because a large amount of nodes are in the same delay band 36

  37. Top Row Comparison • Fraction of malicious nodes in the top row of a correct node’s routing table • GT-ITM (Left), King Latencies(Right) 37

  38. Auditing Parameters • Neighbor nodes randomly audited every 2 minutes (staggered) • It takes 24 challenges to audit a node • 2000 node simulation • Churn: 0%, 5%, 10%, 15% per hour • Target environment is low to moderately high churn 38

  39. In-Degree Distribution • Before auditing has started, malicious nodes are able to obtain high in-degrees • After 10 hours of operating with auditing…(Blue curve) 39

  40. Reducing Fraction of Malicious Nodes • Auditing starts 1.5 hours into simulation • Correct nodes always enforce in-degree bound of 16 per row 40

  41. Reducing Fraction of Malicious Nodes • Top Row Analysis – Higher churn requires more auditing 41

  42. Communication Overhead of Auditing Searching for initial anonymizer nodes 42

  43. How Did They Do? • How serious is the eclipse attack on structured overlays? Very Bad! • How effective is the PNS defense? Poor! • Is degree bounding a more effective defense? Depends…but looks good • How does it effect PNS performance? Depends • Is distributed auditing effective and efficient at bounding node degrees? Yes! 43

Recommend

Providing Administrative Control and Autonomy in Structured Peer-to-Peer Overlays Alan Mislove

Providing Administrative Control and Autonomy in Structured Peer-to-Peer Overlays Alan Mislove

Providing Administrative Control and Autonomy in Structured Peer-to-Peer Overlays Alan Mislove and Peter Druschel Rice University 1 Problem Structured p2p overlays designed so that Participating organizations contribute resources Use the

268 views • 22 slides
Structured Overlays: Attacks, Defenses, and all things Proximity April 27th, 2006 Wyman Park 4 th

Structured Overlays: Attacks, Defenses, and all things Proximity April 27th, 2006 Wyman Park 4 th

Structured Overlays: Attacks, Defenses, and all things Proximity April 27th, 2006 Wyman Park 4 th Floor Conference Room Presentation by: Jay Zarfoss Our roadmap General overview of Overlays / DHTs Chord [13] Pastry [7]

1.28k views • 68 slides
Solely Based on Query Flows for Structured Overlays Yasuhiro Ando, Hiroya Nagao, Takehiro Miyao,

Solely Based on Query Flows for Structured Overlays Yasuhiro Ando, Hiroya Nagao, Takehiro Miyao,

IEEE P2P14 September 2014 Routing Table Construction Method Solely Based on Query Flows for Structured Overlays Yasuhiro Ando, Hiroya Nagao, Takehiro Miyao, Kazuyuki Shudo Tokyo Tech Background: Structured Overlay An application level

430 views • 9 slides
Message Bundling on Structured Overlays Kazuyuki Shudo Tokyo Institute of Technology Tokyo Tech

Message Bundling on Structured Overlays Kazuyuki Shudo Tokyo Institute of Technology Tokyo Tech

IEEE ISCC 2017 July 2017 Message Bundling on Structured Overlays Kazuyuki Shudo Tokyo Institute of Technology Tokyo Tech Background: Structured Overlay An application level network routes a query to the

149 views • 13 slides
Simulation and Modelling of Large-scale Structured P2P Overlays y Mario Kolberg & Jamie

Simulation and Modelling of Large-scale Structured P2P Overlays y Mario Kolberg & Jamie

Simulation and Modelling of Large-scale Structured P2P Overlays y Mario Kolberg & Jamie Furness University of Stirling Peer-to-Peer (P2P) Overlay build on top of the IP network Nodes in the overlay are connected by

250 views • 22 slides
A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE

A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE

A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE A STRUCTURED L IFE by Kirk Gittings Note: Kirk Gittings has been photographing the prehistor- coast, but m aking a real living as an art photographer ic,

1.16k views • 8 slides
1 Preliminaries Outline Scoping the tutorial Behind the P2P Moniker

1 Preliminaries Outline Scoping the tutorial Behind the P2P Moniker

Architectures and Algorithms for Internet-Scale (P2P) Data Management Joe Hellerstein Intel Research & UC Berkeley Overview Preliminaries Ongoing Research What, Why Structured Overlays: DHTs The Platform Query

930 views • 58 slides
Structured Prediction Introduction What is structured prediction? CS 6355: Structured Prediction

Structured Prediction Introduction What is structured prediction? CS 6355: Structured Prediction

Structured Prediction Introduction What is structured prediction? CS 6355: Structured Prediction Our goal today To define a Structure and Structured Prediction 1 What are structures? 2 Examples of structured data? 3 Examples of structured

661 views • 34 slides
Thin Asphalt Overlays for Pavement Preservation Mid-Year Asphalt Pavement Technical Seminar

Thin Asphalt Overlays for Pavement Preservation Mid-Year Asphalt Pavement Technical Seminar

Thin Asphalt Overlays for Pavement Preservation Mid-Year Asphalt Pavement Technical Seminar Sponsored by Flexible Pavements of Ohio Defining a Thin Asphalt Overlay? Thin overlays are typically 1 inch thick (ODOT defines as any

697 views • 43 slides
S T R ATA L O G I C A O V E R V I E W Stratalogica is a web-based program that overlays Nystrom

S T R ATA L O G I C A O V E R V I E W Stratalogica is a web-based program that overlays Nystrom

S T R ATA L O G I C A O V E R V I E W Stratalogica is a web-based program that overlays Nystrom thematic and historical maps on top of google earth [providing an absolutely amazing way to teach and learn geography]. T H R E E U S E S 1) Tier

522 views • 12 slides
Linux Bridge, l2-overlays, E-VPN! Roopa Prabhu Cumulus Networks This tutorial is about ...

Linux Bridge, l2-overlays, E-VPN! Roopa Prabhu Cumulus Networks This tutorial is about ...

Linux Bridge, l2-overlays, E-VPN! Roopa Prabhu Cumulus Networks This tutorial is about ... Linux bridge at the center of data center Layer-2 deployments Deploying Layer-2 network virtualization overlays with Linux Linux hardware

1.35k views • 90 slides
Machine Learning Fall 2017 Structured Prediction (structured perceptron, HMM, structured SVM)

Machine Learning Fall 2017 Structured Prediction (structured perceptron, HMM, structured SVM)

Machine Learning Fall 2017 Structured Prediction (structured perceptron, HMM, structured SVM) Professor Liang Huang (Chap. 17 of CIML) Structured Prediction x x the man bit the dog the man bit the dog x x DT NN

672 views • 27 slides
Virtual Memory Overview / Motivation Simple Approach: Overlays

Virtual Memory Overview / Motivation Simple Approach: Overlays

CPSC 410/611: Operating Systems Virtual Memory Overview / Motivation Simple Approach: Overlays Locality of Reference Demand Paging Policies Placement Replacement

593 views • 16 slides
Structured Education Referral to structured education following diagnosis is recommended by

Structured Education Referral to structured education following diagnosis is recommended by

Structured Education Referral to structured education following diagnosis is recommended by NICE guidance Incentivised through QOF Despite high offer rates (78%), recorded uptake of traditional group-based, face-to-face structured

232 views • 12 slides
L101: Introduction to Structured Prediction Ryan Cotterell What is structured prediction?

L101: Introduction to Structured Prediction Ryan Cotterell What is structured prediction?

L101: Introduction to Structured Prediction Ryan Cotterell What is structured prediction? Its just multi-class classification! Definition: Structured Something in the problem is exponentially large Definition: Structured

615 views • 32 slides
Virtual Memory ! Overview / Motivation ! Simple Approach: Overlays ! Locality of

Virtual Memory ! Overview / Motivation ! Simple Approach: Overlays ! Locality of

CPSC 410/611: Operating Systems Virtual Memory ! Overview / Motivation ! Simple Approach: Overlays ! Locality of Reference ! Demand Paging ! Policies ! Placement ! Replacement ! Allocation ! Case Studies: Unix

546 views • 16 slides
Training Strategies CS 6355: Structured Prediction 1 So far we saw What is structured output

Training Strategies CS 6355: Structured Prediction 1 So far we saw What is structured output

Training Strategies CS 6355: Structured Prediction 1 So far we saw What is structured output prediction? Different ways for modeling structured prediction Conditional random fields, factor graphs, constraints What we only

986 views • 60 slides
Structured Finance Department Who we are An excellent structured financier in the local market

Structured Finance Department Who we are An excellent structured financier in the local market

Structured Finance Department Who we are An excellent structured financier in the local market The Structured Finance Division consists of a team Transport of 15 seasoned project finance professionals active in the origination, structuring,

415 views • 12 slides
CS 3700 Networks and Distributed Systems Overlay Networks (P2P DHT via KBR FTW) Revised

CS 3700 Networks and Distributed Systems Overlay Networks (P2P DHT via KBR FTW) Revised

CS 3700 Networks and Distributed Systems Overlay Networks (P2P DHT via KBR FTW) Revised 10/26/2016 Outline 2 Consistent Hashing Structured Overlays / DHTs Key/Value Storage Service 3 Imagine a simple service that stores

1.8k views • 177 slides
Overlays with preferences: Approximation algorithms for matching with preference lists Giorgos

Overlays with preferences: Approximation algorithms for matching with preference lists Giorgos

Overlays with preferences: Approximation algorithms for matching with preference lists Giorgos Georgiadis Marina Papatriantafilou Happier times in Iceland, when no volcanoes were erupting Overview How do nodes flirt? Matching with

526 views • 20 slides
Introduction to SparkSQL Structured Data Processing in Spark 1 Structured Data Processing A

Introduction to SparkSQL Structured Data Processing in Spark 1 Structured Data Processing A

Introduction to SparkSQL Structured Data Processing in Spark 1 Structured Data Processing A common use case in big-data is to process structured or semi-structured data In Spark RDD, all functions and objects are black-boxes. Any

693 views • 37 slides
Estimating the Life Expectancy of Thin Asphalt Overlays in New Jersey Ayman Ali, Ph.D. Manager,

Estimating the Life Expectancy of Thin Asphalt Overlays in New Jersey Ayman Ali, Ph.D. Manager,

Estimating the Life Expectancy of Thin Asphalt Overlays in New Jersey Ayman Ali, Ph.D. Manager, Center for Research and Education in Advanced Transportation Engineering Systems (CREATEs) Rowan University 109 Gilbreth Parkway Mullica Hill, NJ

1.42k views • 103 slides
Future Internet Applications and Overlays (FIA Research Group) www3.informatik.uni-wuerzburg.de

Future Internet Applications and Overlays (FIA Research Group) www3.informatik.uni-wuerzburg.de

Institute of Computer Science Chair of Communication Networks Prof. Dr.-Ing. P. Tran-Gia Future Internet Applications and Overlays (FIA Research Group) www3.informatik.uni-wuerzburg.de FIA Team Head Tobias Hofeld Researchers Matthias

464 views • 13 slides
Rhizoma: A Runtime for Self-deploying, Self-managing Overlays Qin Yin * , Adrian Schpbach * ,

Rhizoma: A Runtime for Self-deploying, Self-managing Overlays Qin Yin * , Adrian Schpbach * ,

Rhizoma: A Runtime for Self-deploying, Self-managing Overlays Qin Yin * , Adrian Schpbach * , Justin Cappos + , Andrew Baumann * , Timothy Roscoe * * Systems Group, Department of Computer Science, ETH Zurich + Dept. of Computer Science and

645 views • 42 slides

More recommend