Xin Liu,Yao Wang,Dehai Zhao,Weishan Zhang,Leyi Shi

DOI: https://doi.org/10.1016/j.csi.2015.08.001

IF: 3.721

2016-01-01

Computer Standards & Interfaces

Abstract:Malicious code can propagate rapidly via software vulnerabilities. In order to prevent the explosion of malicious codes on the Internet, a distributed patching mechanism is proposed in which the patch can tend to hub nodes automatically based on social computing in social networks. A server in social network generates automatic patches and then selects those nodes with maximum degree to push automatic patches to. Those hub nodes then send the patch to their buddies according to their degree in social network. Automatic patches propagate rapidly through hub nodes and patch nodes in social network, which will improve the security of the whole social network. Those receivers accept the patch according to trust value to the sender, which can avoid some malicious codes exploit our scheme to propagate themselves. Experiments show this mechanism is more efficient than other patching mechanisms.

Yang Bowei,Song Guanghua,Zheng Yao

2012-01-01

Abstract:The voting bias rectification algorithm and the rating characteristic extraction algorithm was introduced to solve problems caused by users′ preference and potential malicious pretenders.The potential malicious pretenders may lurk in the networks for a long time and simultaneously attack a special resource with their accomplices.The experiments deployed and tested in ResourceDog distributed reputation network testbed show that the algorithms further standardized voting behviors and provided early warning for exceptional conditions in the social networks.

JunPeng Mao,Yanli Cui,JianHua Huang,JianBiao Zhang

DOI: https://doi.org/10.1109/iita.2008.405

2008-01-01

Abstract:With peer-to-peer (P2P) technology widely applied, P2P network have become an attacked target of viruses and other malicious code. Among them, pollution attacking of resource is one of most serious threat to P2P file share system. In order to improve the security and transmitting efficiency of P2P network, construct pollution disseminating model of P2P network and analyze the disseminating behavior of polluted resource and legal resource. Main conclusion including, 1) the fluctuation of resource's popularity effects greatly on disseminating behavior of polluted resource, however, a high popularity of polluted resource do not always means to a fast disseminating ratio; 2) The longer resource's disseminating time, the less effect of resource's popularity to the disseminating behavior of polluted and legal resource. 3) The relation between disseminating ratio of polluted resource and share-degree or cognition-degree is inverse ratio, however, disseminating ratio of legal resource approximately exponentially increase with above two factors.

Lina Zhao,Yin Zhang,Sanyuan Zhang,Xiuzi Ye

DOI: https://doi.org/10.1007/11534310_53

2005-01-01

Abstract:With the rapid development of the network technologies, software development is becoming more and more complicated. Traditional software engineering management methods based on Client/Server structure have not been very competent for large-scale software development. This paper proposes a software engineering management method based on P2P structure. By exploring the characteristics of P2P, our system takes “Peer Group” as the unit to build up services including source code management, task assignment and software visualization. Our framework overcomes the server's “bottleneck” existed in the C/S structure. Although it still has a server in the network, the server only provides indexing function and does not store the document. In this way, the loads of the server are transferred to the network boundary. Our method takes full advantages of computation resources, and can increase the system's performance. We will also show in the paper the performance increases by our method in software development for practical applications.

Yulong Yang,Lianzhong Liu,Shu Min

DOI: https://doi.org/10.1109/icsess.2015.7339011

2015-01-01

Abstract:With the rapid development of P2P network technology, the share of P2P Internet traffic is growing among the total internet traffic. Because of the complex structure of P2P network and its protocals is flexible, most of the traditional P2P simulations simulate P2P protocols. This paper presents a distributed P2P users' action simulation system which is able to flexibly configure the content and P2P users' action sequence. Meantime, the system can simulate the execution progress of the action sequence of the P2P network for multiple users with generated data traffic containing specific content. At the same time, the system also provides rich users' action sequence templates, and records the execution progress and corresponding results. Experiments show that the system can simulate real users' action P2P sequence through simple and flexible configuration.

Bo Zhan,Laurissa Tokarchuk,Chaosheng Feng,Zhiguang Qin,Chengdu Sichuan

2009-01-01

Abstract:In recent years, internet users are getting more and more familiar with P2P networks, which allow them to share their content files with scalability and reliability. However, due to the fast speed of data and file exchange in P2P networks, the hosts in the P2P system are especially vulnerable to P2P passive worms. These worms hide themselves in malicious files and trick users into downloading and opening them. In this paper, we first propose a model of passive worm propagation in unstructured P2P networks. Then we propose and evaluate a patch dissemination method to combat the spread of passive worms in P2P networks. This method mimics worm-like behavior to disseminate the patch files. The simulation results indicate that it has a great contribution to constraining passive worm propagation and reducing the peak number of the infected hosts in the P2P network.

WU Ji-yi,PING Ling-di,FAN Rong,Zhijie Lin

2008-01-01

Abstract:With the increasing demand of computer networks security,the distributed intrusion detection technology becomes an important research area.However,the traditional distributed intrusion detection systems have some shortcomings in certain aspects,such as distributivity,flexibility,interoperability,detecting efficiency,and insider threat avoidance etc.To deal with the insider threat more effectively,P2P overlay IDS based on an adaptive trust alert correlation was proposed.Under JXTA P2P framework,a P2P overlay IDS prototype system was implemented,and its effectiveness to prevent the spread of a real Internet worm was evaluated over an emulated network.The experiment results show the P2P overlay IDS significantly increases the overall survival rate of vulnerable peers in network.

Chunfu Jia,Xin Liu,Zhichao Hu,Guoyou Liu,Zhi Wang

DOI: https://doi.org/10.1007/978-3-642-28744-2_85

2012-01-01

Abstract:Malicious worms can be exploited to steal user’s privacy information, destroy the user system and launch DDOS attack. We proposed a method of forming secure P2P network using benign worms against malicious worms. The benign worm with a hitlist is used to patch and clean the corresponding malicious worm for peers in the P2P network which is based on the largest distance list. The spread of the benign worm is also a distributed patching process. The patch can be disseminated more quickly and the network congestion is much less than centralized patching scheme in P2P networks. In the experiments, after the benign worm accomplished its mission in the P2P network, almost all of the vulnerable and infected peers are healthy. The P2P network is secure to the malicious worm.

Ji Zheng,Xin Wang,Xiangyang Xue,C. K. Toh

DOI: https://doi.org/10.1109/cit.2005.18

2005-01-01

Abstract:A general or agent-based security system is usually constructed hierarchically and has a central manager acting as head of the whole system. However, the manager becomes a bottleneck for being connected by each client. It can even overload when too many clients request service simultaneously. The whole system may collapse when the central manager is attacked. And these systems are passive to detect and deal with the secure problem. Hereby we present a mobile agent-based P2P Autonomous Security Hole Discovery system (PASHD). It can detect infection and network intrusion based on knowledge of the local host. Viruses will be removed and connection will be refused after identification. In case of a suspicious activity, PASHD initiates a voting approach to make a collective decision and take further action. This system acts self-learning when encountering intrusion or infection with new patterns. And it has the capability of autonomous discovery the security hole of hosts in network. The integration of peer-to-peer behavior with mobile agents reduces latency and load; however, flexibility, effectivity, security and cooperation of the system are enhanced.

Qiyi Han,Hong Wen,Gang Feng,Longye Wang,Fei Pan

DOI: https://doi.org/10.1109/glocom.2014.7417048

2015-01-01

Abstract:Peer-to-peer (P2P) systems and online social network (OSN) both have achieved tremendous success. Recent studies suggest that the cooperation of P2P and OSN can achieve better efficiency and security. Unfortunately, novel security problems are emerging as the mutual cooperation and dependence contributes to forming the interdependent networks which are more vulnerable for malicious attack as well as rumor propagation. In this paper, we examined the security environment for P2P and OSN, respectively, and analyzed the security problem derived from the cooperation and interdependence of two networks. The spreader-ignorant-recaller-stifler (SICR) is leveraged to model the rumor spreading in the interdependent networks. In order to enhance the security, we proposed two security schemes named authentication intervening and splitting target and their performance summaries indicate to be effective, simple, and potentially transformative way to guarantee the security for interdependent networks of P2P and OSN.

LIU Wu,DUAN Hai-Xin,ZHANG Hong,WU Jian-Ping

2008-01-01

Periodical of Ocean University of China

Abstract:In traditional network security management systems,system administrators could not prevent malicious users from illegal actions in time.This paper introduces the trust mechanism to dynamically evaluate user's reputation which is correlated with the user's privilege in the network and based on which we proposed and implemented the key algorithm of trust based access control in P2P Network.

Wu Liu,HaiXin Duan,Hong Zhang,Jianping Wu

2008-01-01

Abstract:The trust mechanism was introduced to dynamically evaluate user's behavior in P2P network, and bind user's reputation with its access control privilege in the network. In addition, the trust based dynamic access control mechanism and key algorithm was proposed and implemented. With the trust based network security management system implemented based on the trust mechanism, a malicious user will be kicked out from the network system and refused from accessing resources of the network automatically when the user's reputation is lower than some threshold.

Xin Liu,Zhichao Hu,GuoYou Liu,Zhi Wang,Chunfu Jia

2011-01-01

Journal of Computational Information Systems

Abstract:Malicious worms can be exploited to destroy the user system and launch DDoS attack against computer networks. We proposed a method of forming secure P2P network using benign worms against malicious worms. The corresponding benign worm with a hitlist is generated to clean the malicious worm and patch peers in the P2P network which is based on the largest distance list. The benign worm propagates along the histlist. The spread of the benign worm is also a distributed patching process. The patch can be disseminated more quickly and the network congestion is much less than centralized patching scheme in P2P networks. In the experiments, after the benign worm accomplished its mission in the P2P network, all the malicious worms on infected peers are cleaned and almost all of the vulnerable peers are patched. Copyright © 2011 Binary Information Press.

LIU Xin,JIA Chun-fu,SHI Le-yi,XIN Zhao-jun

DOI: https://doi.org/10.3969/j.issn.0372-2112.2013.06.014

2013-01-01

Abstract:IM(Instant Messaging ) is used widely ,which is an avenue for the propagation of IM malicious codes .To restrain IM malicious codes ,we proposed a collaborative defending scheme based on social computing .Users can obtain experience after they browse through web pages and run malicious codes .Based on the trust between a user and his friends ,through social comput-ing ,the experience and the checking results about IM malicious codes from different antivirus softwares on hosts are collected to re-sult in collective intelligence .The platform used in the scheme is the social network formed by IM tool .Dynamic trusts on friends are calculated according to massages from friends .The scheme is a distributed system which is implemented in clients .Users collab-orate with their friends to slow down the propagation of IM malicious codes .The experiments show all nodes in the social network are immune at last in the case when most users accept the warning ,and the defending capacity of the whole social network is en-hanced .

Li Miao,Shuai Li,Zhongqin Wang

DOI: https://doi.org/10.1007/s11277-017-4866-z

IF: 2.017

2017-08-28

Wireless Personal Communications

Abstract:As one part of our life, there are many different types of security threats in social network, and the virtual assets of social networking users has become the attack target. It is of great importance to use security patches in social network to offset the security threats. However, the dissemination of security patches will bring challenges to energy consumptions and network resources which are limited in social networks. In this paper, we will construct a novel optimal dissemination strategy based on differential game to get the desired equilibrium between security risks and resource consumption. The optimal dissemination rate is obtained from the Nash equilibrium solution. Simulation analysis will be given to illustrate that resource consumption and virtual assets loss can be reduced based on the proposed scheme.

telecommunications

Shi-jie ZHOU,Zhi-guang QIN,Le-yuan LIU,Yi-yi DENG

DOI: https://doi.org/10.3969/j.issn.1002-137X.2011.03.012

2011-01-01

Computer Science

Abstract:P2P worms employ the distinctive features of P2P network,such as the local routing table,application routing mechanism and so on,to quickly distribute them into the network while holding the covert characteristic.Contrarily,the common internet worms generally rely on detecting the victims' IP address to spread.Therefore,the lack of hidden feature and feasible promulgating paths make that it is easier to detect and defense the ordinary internet worms than P2P worms.Consequently,the P2P worm can do more damage to the network if lacking the effective defensive scheme.In this paper,the P2P worm,especially its transmission mechanism was analyzed synthetically.Then,an anti-worm based scheme for the defensive of P2P worm was presented.The principle and functional modules of this new scheme were addressed as well.By using the Peersim P2P simulator,the performance of our novel scheme was evaluated experimentally in various system parameters.The primary experimental results indicated that our anti-worm based defensive scheme for P2P worm has the features of fast convergence,low overload of networking resource(including communication traffic and computing power),and high adaptability.

MA Yuan,LUO Yong-long,LIU Fei,HUANG Liu-sheng

DOI: https://doi.org/10.3969/j.issn.1671-1122.2013.12.004

2013-01-01

Abstract:This paper introduces P2P applications and its definition at first, and presents the security problem due to the P2P anonymity and dynamic characters, and then leads to the concept of security mechanism. On this basis, the main security problems are summarized in this paper; in addition this paper presents corresponding security protection mechanisms combined with the research results at home and abroad and proposes some possible problems through the analysis and explanation to these protection mechanisms. At last, this paper presents some guidelines for future research.

Wenyu Wang,Li Zhao,Ruixi Yuan

DOI: https://doi.org/10.1109/ipdps.2006.1639703

2006-01-01

Abstract:Rational and selfish nodes in P2P systems usually lack effective incentives to cooperate, contributing to the increase of free-riders, and degrading the system performance. Various attacks such as whitewashing, collusion, and software cracking pose great challenges on distributed reputation management. To tackle these problems, we propose to build a social network on P2P system, and use the strength of social connections to facilitate transactions in P2P system. The' small world' character of social networks makes it feasible for nodes to locate resources and conduct transactions while maintain limited local memory history. Such distributed memory combined by relationship between peers constructs a powerful reputation management network, which could have better performance than shared history system and is more robust under various attacks. Our simulation and analysis show that the social network model can greatly incent cooperation in P2P networks and enormously reduce the memory cost.

Ting Chen,Xiao-song Zhang,Hua Li,Xiong-da Li,Yue Wu

DOI: https://doi.org/10.1016/j.jnca.2011.04.003

IF: 7.574

2011-01-01

Journal of Network and Computer Applications

Abstract:P2P worms pose a serious threat to Internet infrastructure and terminal users because of their overwhelming propagation speed. Manual reactions fall behind the fast propagation of P2P worms. Current automatic techniques are still not adequate to be deployed on a large scale for several challenges including low accuracy, low efficiency, etc. In this paper, we bring forward a repair-and-patch approach to quarantine malicious worms quickly in unstructured P2P networks. Our work has two major contributions. Firstly, we propose two kinds of benign worms, which differ in functions and spread strategies, to cooperatively battle against malicious worms. Secondly, we derive discrete difference equations to depict the interplay between malicious and benign worms. Four factors - manual countermeasures, P2P topology, configuration diversity and attack and defense strategies - are modeled in the equations. Preliminary experiments are promising. Compared with sheer manual reactions, our approach is about two times faster and protects about 35% more hosts. In comparison with benign worms, which search targets by random scanning, our proposed method guards about 34.4% more hosts with lower consumption of bandwidth resources.

Junfeng Yu,Zhitang Li,Jun Hu,Feng Liu,Lingyun Zhou

DOI: https://doi.org/10.1109/nswctc.2009.289

2009-01-01

Abstract:Due to the steady evolution and increase in sophistication of peer to peer botnets, it is necessary to understand the structural potential in this type of intruder tool. We formally model the P2P botnets with the help of complex systems. We propose metrics to measure the structural potential of different types of P2P botnets. We also propose a simulative framework to investigate the robustness of P2P botnets in face of various targeted response. In particular, We have shown that naive defenses don’t work. Simply randomly remove infected nodes does not slow down the attacker much, regardless of whether the connectivity between peer bots follows a random or scale-free pattern. We found that the degree based response on P2P botnets offer best approach. Our works also show that the simulation approach revealed some invariant properties of the P2P botnets and open an insight about functional aspects of their topology in terms of robustness and communication efficiency.