Pushback for Overlay Networks: Protecting Against Malicious Insiders

13 years 11 months ago

Download cs.gmu.edu

Peer-to-Peer (P2P) overlay networks are a ﬂexible way of creating decentralized services. Although resilient to external Denial of Service attacks, overlay networks can be rendered inoperable by simple ﬂooding attacks generated from insider nodes. In this paper, we study detection and containment mechanisms against insider Denial of Service (DoS) attacks for overlay networks. To counter such attacks, we introduce novel mechanisms for protecting overlay networks that exhibit well deﬁned properties due to their structure against non-conforming (abnormal) behavior of participating nodes. We use a lightweight distributed detection mechanism that exploits inherent structural invariants of DHTs to ferret out anomalous ﬂow behavior. We evaluate our mechanism’s ability to detect attackers using our prototype implementation on web traces from IRCache served by a DHT network. Our results show that our system can detect a simple attacker whose attack traﬃc deviates by as little as 5% ...

Angelos Stavrou, Michael E. Locasto, Angelos D. Ke

Real-time Traffic

ACNS 2008 | Cryptography | Overlay Networks | Overlay Nodes | Simple ﬂooding Attacks |

claim paper

» A framework for mitigating attacks against measurementbased adaptation mechanisms in unstr...

» Protecting Secret Data from Insider Attacks

» JANUS towards robust and malicious resilient routing in hybrid wireless networks

» Securing sensitive content in a viewonly file system

Post Info
More Details (n/a)

Added	01 Jun 2010
Updated	01 Jun 2010
Type	Conference
Year	2008
Where	ACNS
Authors	Angelos Stavrou, Michael E. Locasto, Angelos D. Keromytis

Comments (0)

Sciweavers

Pushback for Overlay Networks: Protecting Against Malicious Insiders

ACNS 2008 | Cryptography | Overlay Networks | Overlay Nodes | Simple ﬂooding Attacks |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers