夏莹杰,宋广华,朱明哲,郑耀

DOI: https://doi.org/10.3785/j.issn.1008-973X.2010.01.011

2010-01-01

Abstract:A trusted small world Peer-to-Peer (P2P) model with role and reputation based access control policies (SW-R2P) was designed to combine the network topology and trust evaluation in P2P network. The model utilizes the zero knowledge interactive proof (ZKIP) scheme to authenticate the group information between peers without transferring any related data. The group information is used to cluster the peers to construct a small world topology. The Bayesian trust network is involved into the SW-R2P model to evaluate the multi-faceted trust of the peer and the group, which supporting the action protocols of peers and the long links between groups. Simulation shows that the SW-R2P model performs much better than the Chord and R2P models in the resources lookup, clustering coefficient and peer reputation error. The SW-R2P model integrates the advantages of small world topology, ZKIP scheme and Bayesian trust network, therefore implements a trustworthy, secure and efficient P2P network.

Yingjie Xia,Guanghua Song,Yao Zheng

DOI: https://doi.org/10.4304/jcp.3.10.3-11

2008-01-01

Journal of Computers

Abstract:In order to implement both the efficiency and security in the Peer-to-Peer (P2P)network, we design a trusted small world overlay P2P network with the role based and reputation based access control policies, denoted as SW-R2P.TheSW-R2P system integrates the small world topology with zero knowledge identification and Bayesian trust model. The zero knowledge identification is utilized to securely cluster all the peers into several groups without transferring any related information. The peer groups are then linked together to construct a trusted small world network based on the probabilities calculated by the Bayesian trust model. The simulation experiments demonstrate that the SW-R2P system achieves the performance with increased success rate in the resources lookup, strengthened robustness under the overwhelming traffic loadings, reduced reputation errors caused by the malicious peers and enhanced peer satisfaction rate for different trust metrics. In conclusion, the SW-R2P system collectively exploits the advantages of small world, zero knowledge identification and Bayesian trust model, therefore implementing a scalable, secure and efficient P2P network.

ZHANG Yan-xia,WANG Jin-lin

2007-01-01

Journal of Computer Applications

Abstract:Centralizedity is not appropriate in peer-to-peer (P2P) systems, because nodes in peer groups are equal inherently. This challenges the security and efficiency of the networking access control. The work done by some other researchers shows that it is very difficult to design a multi-party, multi-round protocol which is efficient and secure, robust at the same time. The application of threshold cryptography in peer-to-peer network can provide robust and high fault-tolerance access control. It also provides scalability by distributing trust throughout the peer group; therefore it is a new solution to peer-groups security service. This new design can also eliminate the vulnerability in the existing P2P access control protocols.

Yunhao Liu,Jinsong Han

DOI: https://doi.org/10.14711/thesis-b987542

2007-01-01

Abstract:Peer-to-Peer (P2P) model has become the mainstream of the applications in current and future Internet. Being effective in utilizing and managing globally distributed information over Internet, however, most current P2P systems do not provide protection to their users against the increasing threat from selfish peers or malicious adversaries. Anonymous and trustworthy computing hereby has continuously gained importance because it meets the users’ demands of privacy, fairness, trust, and reliability. In order to construct anonymous and trustworthy P2P systems, we must address several crucial challenges including (1) reliably and efficiently anonymizing the P2P network; (2) authenticating users’ identities; (3) enabling trust management in anonymous environments. Most existing approaches achieve anonymity via fixed paths, which are unreliable and inefficient in dynamic P2P systems. We propose two non-path based protocols to anonymize P2P systems. The results of trace driven simulations show that our proposed protocols are reliable, scalable and effective, and significantly reduce cryptographic overhead. The second issue is that the current authentication approaches face a dilemma in anonymous environments: authenticating other users needs their real identities; while the anonymity requires those users to hide their real identities. We propose a Zero-knowledge based protocol to allow users authenticate with each other without exposing their real identities. We show the effectiveness of our proposed protocol by simulation studies and prototype implementation. We solve the third issue by constructing a reputation based trust management architecture. We particularly focus on the feedback quality problem. In shorting of trusted authority centers in P2P systems, the feedback quality are easily wrecked by the dishonest feedback from malicious peers, which further degrades the computation accuracy of users’ reputation. Our proposed architecture effectively alleviates the damage on computing reputation caused by the feedback cheating. We believe that widely employing above proposed approaches will make P2P systems more secure and reliable. We also extend our study to other distributed systems and propose a privacy-preserving authentication protocol for RFID systems. Keywords: Peer-to-Peer, Anonymity, Privacy-Preserving, Authentication, Key Updating, Secret Sharing, Random Walk, Selected Flooding, Trustworthy Computing, Feedback Quality, Trust Management, Trace Driven Simulation, Zero-Knowledge Proof, Man-in-middle-attack

Lixiang Li,Jürgen Kurths,Yixian Yang,Guole Liu

DOI: https://doi.org/10.1155/2014/189213

IF: 1.43

2014-01-01

Mathematical Problems in Engineering

Abstract:In recent years, the complex network as the frontier of complex system has received more and more attention. Peer-to-peer (P2P) networks with openness, anonymity, and dynamic nature are vulnerable and are easily attacked by peers with malicious behaviors. Building trusted relationships among peers in a large-scale distributed P2P system is a fundamental and challenging research topic. Based on interpersonal relationships among peers of large-scale P2P networks, we present prevention and trust evaluation scheme, called IRTrust. The framework incorporates a strategy of identity authentication and a global trust of peers to improve the ability of resisting the malicious behaviors. It uses the quality of service (QoS), quality of recommendation (QoR), and comprehensive risk factor to evaluate the trustworthiness of a peer, which is applicable for large-scale unstructured P2P networks. The proposed IRTrust can defend against several kinds of malicious attacks, such as simple malicious attacks, collusive attacks, strategic attacks, and sybil attacks. Our simulation results show that the proposed scheme provides greater accuracy and stronger resistance compared with existing global trust schemes. The proposed scheme has potential application in secure P2P network coding.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Zhou Zhou,Huang Yongfeng,Li Xing

DOI: https://doi.org/10.3321/j.issn:1001-0505.2007.z1.022

2007-01-01

Abstract:A novel authentication framework,which is named central identity-code assignment and distributed authentication(CIADA),is proposed in order to meet the demands of the secure authentication for nodes in the peer-to-peer(P2P) network.The "trusted third party"(TTP) trust model is improved,and the secure dynamic accumulator is utilized to carry out the authentication protocol.The authentication among nodes is implemented efficiently.The dynamic entering or leaving of nodes is supported,and the authentication among domains and the combination of domains are allowed.CIADA takes full account of the characters of P2P network such as self-organization,dynamic and scalability.It is in the same secure intension as public key infrastructure(PKI) but without the defects in keys' issue and revoking and the authentication among domains of other existed distributed authentication protocols.So CIADA is more suitable for the secure authentication of nodes in the P2P network.

Chen Yang,Hu Shuang,Chen Gongliang,Li Jianhua

DOI: https://doi.org/10.1109/iccsn.2017.8230277

2017-01-01

Abstract:P2P (Peer to Peer) technology by its virtue of its inherent decentralization, autonomy, fault tolerance and scalability, it is widely applied in file sharing system. P2P file sharing system overcomes the weaknesses of traditional C/S network system like sluggish response, while also embodying security risks such as fraud and unreliable service owing to poor trust mechanism. Establishing an effective trust mechanism in P2P network is significant for improving its feasibility. First, we design a multi-dimensioned trust model, which covers time cost and risk factors and enhances the reliability of existing trust measurement. Then we purpose an improved trust and authorization mechanism, which combines our trust model with SPKI (Simple Public Key Infrastructure) to resolve the trust problem. In general, the proposed trust and authorization mechanism can effectively optimize the trust strategies of P2P file sharing system by experiment, thus ameliorate its reliability and availability, and promotes its extensive application.

Aiguo Chen,Guangchun Luo,Jinsheng Ren

DOI: https://doi.org/10.1587/transinf.e97.d.1656

2014-01-01

IEICE Transactions on Information and Systems

Abstract:Establishing trust measurements among peer-to-peer (P2P) networks is fast becoming a de-facto standard, and a fair amount of work has been done in the area of trust aggregation and calculation algorithms. However, the area of developing secure underlying protocols to distribute and access the trust ratings in the overlay network has been relatively unexplored. We propose an elliptic curve-based trust management protocol for P2P systems, which is designed to provide authentication and signature functions to protect the processes of trust value query and rating report. Additionally, instead of using single identities, the protocol generates two verifiable pseudonyms, one is used for transaction, the other is applied when the peer acts as a trust holding peer. A security analysis shows that the proposed protocol is extremely secure in the face of a variety of possible attacks.

LIN Huai-qing,LI Zhi-tang,HUANG Qing-feng

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.18.007

2007-01-01

Abstract:Managing trust relationships are important part of trust model.An important challenge in managing such trust relationships is to design a protocol to secure the placement and access of these trust ratings.In this protocol,a verifiable threshold cryptosystem without a trusted center is applied to generate system public/private keys.K managers can generate certification for peer.The protocol provides an anonymous server for peer.The security analysis shows that the protocol has desirable features of anonymity,reliability,accountability and is secure in the presence of a variety of possible attacks.

Zhenquan Qin,Lei Wang,Mingchu Li,Weifeng Sun

DOI: https://doi.org/10.1109/IIHMSP.2010.185

2010-01-01

Abstract:With the proliferation of P2P application, it is critical to consider how these systems can be run in a trust environment. We present a lightweight time-window based effective dynamic trust mechanism(Tw-Trust) considering the peer’s local and global trustworthiness. Simulation results show that Tw-Trust has the advantages in countering strategic altering behavior and dishonest feedbacks of malicious peers.

Chunrui ZHANG,Fan JIANG,Ke XU

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.037

2005-01-01

Abstract:The P2P(peer to peer) technique is now used in many areas,but no good solutions have yet been developed to set up trust among peers.This paper presents a model,called P2Ptrust,which combines a local trust table and a global reputation table.Each peer endows a trust value to other peers respectively whose trades are trustworthy.And the values construct a local trust table.Each peer must save several global reputation tables which belong to other peers.This model uses the friend mechanism and unites the virtue of the local trust table and the global reputation table.This paper also introduces a solution for the sybil attack,the malicious collectives attack,and other such attacks.Simulation results show that the P2Ptrust model reduces communication overhead and is more robust with security and has better extensibility.

Zhu Chang-sheng,Gao Ying-ying,Lei Qian,Wang Qing-rong

DOI: https://doi.org/10.1109/CINC.2010.5643720

2010-01-01

Abstract:Fuzzy set has become the focus method of trust model. Based on the exisdng research, this trust model give a description of the trust with fuzzy set theory, and trust assessment is separated two aspects which are subjective trust assessment and objective environment impact. In order to adapt to the dynamic of credibility, we use close function which from fuzzy set and distributed storage method in trust update model. Simulation experiment results show that this model is effective and rational. ©2010 IEEE.

YANXIA ZHANG,JINLIN WANG

DOI: https://doi.org/10.3969/j.issn.1008-0570.2007.15.028

2007-01-01

Abstract:In fully distributed peer-to-peer systems,secure services have to be fulfilled by the union of peer-group members because there is no centralized authority.This paper investigates the application of threshold cryptography for membership control in p2p system .We analyze the secure flaws in prior works and design a multi-party self-service p2p access control protocol on the basis of threshold computation protocols.No centralized authority is needed through the whole protocol process.The analysis of security,robust and efficiency is provided.

Xiaoyong Li,Xiaolin Gui

DOI: https://doi.org/10.1109/ROBIO.2007.4522475

2007-01-01

Abstract:A scalable trusted P2P system requires fast convergence of trust data when assessing the risk of a peer in performing a task. In this paper, a new reputation aggregation mechanism is introduced, which adopts a novel feedback trust aggregating mechanism based on Direct Trust Tree (DTT). First, for every peer in the P2P system, a DTT is constructed and maintained based on peer's last direct interaction experience. Then, feedback trust information is searched by using DTT instead of broadcast manner in others reputation system. Third, two new parameters, quality factor and distance factor, are introduced to adjust the scale of aggregation computing automatically. Simulation's results show that the model remarkably enhances the convergence of trust aggregation computing.

ZHANG Chunrui,XU Ke,WANG Kaiyun,JIANG Jianguo

DOI: https://doi.org/10.3321/j.issn:1000-0054.2007.07.035

2007-01-01

Abstract:Peer-to-Peer networks are open,anonymous,and highly dynamic systems.Hackers can easily attack such systems and use them to spread malicious information after invading the system.One approach to address these problems is to establish trust relations with peers in the P2P network.This paper presents a Trust-in-Peer-to-Peer model in which each peer calculates the trust value of queried peers to build a local trust table using a trust vector.Each peer can also submit opinions about other peers to construct a global credibility table which will lead to a trust network.Simulation results show that the Trust-in Peerto-Peer model gives higher success ratios than other models with lower communication and computational overheads.The model also prevents the Sybil attack,malicious collectives attack,and free riders.This makes the P2P network more robust and extensible and increases security be establishing a more credible network.

Li Lu,Jinsong Han,Lei Hu,Jinpeng Huai,Yunhao Liu,Lionel M. Ni

DOI: https://doi.org/10.1109/ipdps.2007.370284

2007-01-01

Abstract:Most of the current trust models in peer-to-peer (P2P) systems are identity based, which means that in order for one peer to trust another, it needs to know the other peer's identity. Hence, there exists an inherent tradeoff between trust and anonymity. To the best of our knowledge, there is currently no P2P protocol that provides complete mutual anonymity as well as authentication and trust management. We propose a zero-knowledge authentication scheme called pseudo trust (PT), where each peer, instead of using its real identity, generates an unforgeable and verifiable pseudonym using a one-way hash function. A novel authentication scheme based on zero-knowledge proof is designed so peers can be authenticated without leaking any sensitive information. With the help of PT, most existing identity-based trust management schemes become applicable in mutual anonymous P2P systems. We analyze the levels of security and anonymity in PT, and evaluate its performance using trace-driven simulations and a prototype implementation. The strengths of pseudo trust include the lack of need for a centralized trusted party or CA, high scalability and security, low traffic and cryptography processing overheads, and man-in-middle attack resistance. We aim for the pseudo trust design to be included in the P2P trust and anonymity context.

Gaoxiang Chen,Huifang Chen,Lei Xie,Gelian Song

DOI: https://doi.org/10.1109/icct.2010.5688868

2010-01-01

Abstract:Since peers can exchange information with each other directly, the identity authentication plays an important role towards the security issue of a peer-to-peer (P2P) network. Moreover, due to the inherent characteristics of wireless networks, the existing identity authentication schemes proposed for the traditional P2P networks are not suited for wireless P2P. Hence, we propose an identity authentication scheme for the wireless P2P network in this paper. In the proposed scheme, we apply a hybrid P2P topology and tickets issued by super peers to perform the user mutual authentication. And we also present a quick re-authentication method dealing with temporary broken down link to simplify the authentication procedure and improve the efficiency. Security analysis results show that our proposed scheme can resist most malicious attacks effectively.

HE Li-Bao,HUANG Liu-Sheng,YANG Wei,LUO Yong-Long

DOI: https://doi.org/10.3969/j.issn.1671-1122.2009.07.017

2009-01-01

Abstract:Building trust relationships between entities is an important and difficult part in the security needs of P2P networks.By using appropriate assessment tools,traditional trust models can weaken some security threats such as simple deception,an omission,defamation and joint cheating to a certain extent,however they are unable to resist the attacks of Pseudospoofing and Pseudostheft effectively.In this paper,the trusted computing method initiated by Trusted Computing Group(TCG) is introduced into P2P networks,and we propose an efficient scheme on foundation and management of stable and verifiable digital identities of entities.The new designed trust model,using platform attestation technology through the whole process of trust evaluation,perfectly solved security problems of P2P networks.

Li Lu,Jinsong Han,Yunhao Liu,Lei Hu,Jinpeng Huai,Lionel M. Ni,Jian Ma

DOI: https://doi.org/10.1109/tpds.2008.15

IF: 5.3

2008-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Most of the current trust models in peer-to-peer (P2P) systems are identity based, which means that in order for one peer to trust another, it needs to know the other peer's identity. Hence, there exists an inherent tradeoff between trust and anonymity. To the best of our knowledge, there is currently no P2P protocol that provides complete mutual anonymity as well as authentication and trust management. We propose a zero-knowledge authentication scheme called Pseudo Trust (PT), where each peer, instead of using its real identity, generates an unforgeable and verifiable pseudonym using a one-way hash function. A novel authentication scheme based on Zero-Knowledge Proof is designed so that peers can be authenticated without leaking any sensitive information. With the help of PT, most existing identity-based trust management schemes become applicable in mutual anonymous P2P systems. We analyze the security and the anonymity in PT, and evaluate its performance using trace-driven simulations and a prototype PT-enabled P2P network. The strengths of our design include 1) no need for a centralized trusted party or CA, 2) high scalability and security, 3) low traffic and cryptography processing overheads, and 4) man-in-middle attack resistance.

Li Lu,Jinsong Han

2006-01-01

Abstract:Technical Report TR 2006-10 Abstract— Most of the current trust models in peer-to-peer (P2P) systems are identity based, which means that in order for one peer to trust another, it needs to know the other peer’s identity. Hence, there exists an inherent tradeoff between trust and anonymity. To the best of our knowledge, there is currently no P2P protocol that provides complete mutual anonymity as well as authentication and trust management. We propose a zero-knowledge authentication scheme called Pseudo Trust (PT), where each peer, instead of using its real identity, generates an unforgeable and verifiable pseudonym using a one-way hash function. A novel authentication scheme based on Zero-Knowledge Proof is designed so peers can be authenticated without leaking any sensitive information. With the help of PT, most existing identity-based trust management schemes become applicable in mutual anonymous P2P systems. We analyze the levels of security and anonymity in PT, and evaluate its performance using trace-driven simulations. A prototype Pseudo Trust-enabled P2P network is running in our labs at CAS Beijing, Hong Kong UST, and other sites. The strengths of Pseudo Trust include the lack of need for a centralized trusted party or CA, high scalability and security, low traffic and cryptography processing overheads, and man-in-the-middle attack resistance. We aim for the Pseudo Trust design to be included in the P2P trust and anonymity context.