Li Lu,Jinsong Han,Yunhao Liu,Lei Hu,Jinpeng Huai,Lionel M. Ni,Jian Ma

DOI: https://doi.org/10.1109/tpds.2008.15

IF: 5.3

2008-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Most of the current trust models in peer-to-peer (P2P) systems are identity based, which means that in order for one peer to trust another, it needs to know the other peer's identity. Hence, there exists an inherent tradeoff between trust and anonymity. To the best of our knowledge, there is currently no P2P protocol that provides complete mutual anonymity as well as authentication and trust management. We propose a zero-knowledge authentication scheme called Pseudo Trust (PT), where each peer, instead of using its real identity, generates an unforgeable and verifiable pseudonym using a one-way hash function. A novel authentication scheme based on Zero-Knowledge Proof is designed so that peers can be authenticated without leaking any sensitive information. With the help of PT, most existing identity-based trust management schemes become applicable in mutual anonymous P2P systems. We analyze the security and the anonymity in PT, and evaluate its performance using trace-driven simulations and a prototype PT-enabled P2P network. The strengths of our design include 1) no need for a centralized trusted party or CA, 2) high scalability and security, 3) low traffic and cryptography processing overheads, and 4) man-in-middle attack resistance.

Li Lu,Jinsong Han

2006-01-01

Abstract:Technical Report TR 2006-10 Abstract— Most of the current trust models in peer-to-peer (P2P) systems are identity based, which means that in order for one peer to trust another, it needs to know the other peer’s identity. Hence, there exists an inherent tradeoff between trust and anonymity. To the best of our knowledge, there is currently no P2P protocol that provides complete mutual anonymity as well as authentication and trust management. We propose a zero-knowledge authentication scheme called Pseudo Trust (PT), where each peer, instead of using its real identity, generates an unforgeable and verifiable pseudonym using a one-way hash function. A novel authentication scheme based on Zero-Knowledge Proof is designed so peers can be authenticated without leaking any sensitive information. With the help of PT, most existing identity-based trust management schemes become applicable in mutual anonymous P2P systems. We analyze the levels of security and anonymity in PT, and evaluate its performance using trace-driven simulations. A prototype Pseudo Trust-enabled P2P network is running in our labs at CAS Beijing, Hong Kong UST, and other sites. The strengths of Pseudo Trust include the lack of need for a centralized trusted party or CA, high scalability and security, low traffic and cryptography processing overheads, and man-in-the-middle attack resistance. We aim for the Pseudo Trust design to be included in the P2P trust and anonymity context.

Yunhao Liu,Jinsong Han

DOI: https://doi.org/10.14711/thesis-b987542

2007-01-01

Abstract:Peer-to-Peer (P2P) model has become the mainstream of the applications in current and future Internet. Being effective in utilizing and managing globally distributed information over Internet, however, most current P2P systems do not provide protection to their users against the increasing threat from selfish peers or malicious adversaries. Anonymous and trustworthy computing hereby has continuously gained importance because it meets the users’ demands of privacy, fairness, trust, and reliability. In order to construct anonymous and trustworthy P2P systems, we must address several crucial challenges including (1) reliably and efficiently anonymizing the P2P network; (2) authenticating users’ identities; (3) enabling trust management in anonymous environments. Most existing approaches achieve anonymity via fixed paths, which are unreliable and inefficient in dynamic P2P systems. We propose two non-path based protocols to anonymize P2P systems. The results of trace driven simulations show that our proposed protocols are reliable, scalable and effective, and significantly reduce cryptographic overhead. The second issue is that the current authentication approaches face a dilemma in anonymous environments: authenticating other users needs their real identities; while the anonymity requires those users to hide their real identities. We propose a Zero-knowledge based protocol to allow users authenticate with each other without exposing their real identities. We show the effectiveness of our proposed protocol by simulation studies and prototype implementation. We solve the third issue by constructing a reputation based trust management architecture. We particularly focus on the feedback quality problem. In shorting of trusted authority centers in P2P systems, the feedback quality are easily wrecked by the dishonest feedback from malicious peers, which further degrades the computation accuracy of users’ reputation. Our proposed architecture effectively alleviates the damage on computing reputation caused by the feedback cheating. We believe that widely employing above proposed approaches will make P2P systems more secure and reliable. We also extend our study to other distributed systems and propose a privacy-preserving authentication protocol for RFID systems. Keywords: Peer-to-Peer, Anonymity, Privacy-Preserving, Authentication, Key Updating, Secret Sharing, Random Walk, Selected Flooding, Trustworthy Computing, Feedback Quality, Trust Management, Trace Driven Simulation, Zero-Knowledge Proof, Man-in-middle-attack

Yingjie Xia,Guanghua Song,Yao Zheng

DOI: https://doi.org/10.4304/jcp.3.10.3-11

2008-01-01

Journal of Computers

Abstract:In order to implement both the efficiency and security in the Peer-to-Peer (P2P)network, we design a trusted small world overlay P2P network with the role based and reputation based access control policies, denoted as SW-R2P.TheSW-R2P system integrates the small world topology with zero knowledge identification and Bayesian trust model. The zero knowledge identification is utilized to securely cluster all the peers into several groups without transferring any related information. The peer groups are then linked together to construct a trusted small world network based on the probabilities calculated by the Bayesian trust model. The simulation experiments demonstrate that the SW-R2P system achieves the performance with increased success rate in the resources lookup, strengthened robustness under the overwhelming traffic loadings, reduced reputation errors caused by the malicious peers and enhanced peer satisfaction rate for different trust metrics. In conclusion, the SW-R2P system collectively exploits the advantages of small world, zero knowledge identification and Bayesian trust model, therefore implementing a scalable, secure and efficient P2P network.

夏莹杰,宋广华,朱明哲,郑耀

DOI: https://doi.org/10.3785/j.issn.1008-973X.2010.01.011

2010-01-01

Abstract:A trusted small world Peer-to-Peer (P2P) model with role and reputation based access control policies (SW-R2P) was designed to combine the network topology and trust evaluation in P2P network. The model utilizes the zero knowledge interactive proof (ZKIP) scheme to authenticate the group information between peers without transferring any related data. The group information is used to cluster the peers to construct a small world topology. The Bayesian trust network is involved into the SW-R2P model to evaluate the multi-faceted trust of the peer and the group, which supporting the action protocols of peers and the long links between groups. Simulation shows that the SW-R2P model performs much better than the Chord and R2P models in the resources lookup, clustering coefficient and peer reputation error. The SW-R2P model integrates the advantages of small world topology, ZKIP scheme and Bayesian trust network, therefore implements a trustworthy, secure and efficient P2P network.

彭志宇,李善平,杨朝晖,林欣

DOI: https://doi.org/10.3785/j.issn.1008-973X.2010.05.011

2010-01-01

Abstract:An anonymous authorization mechanism was proposed to protect the user's privacy in the process of authorization in trust management. User requested for services using their real identification in most of the classic trust-management language system, which potentially leaded to the privacy leaking. Through dynamically searching for the delegation roles which take over the request, the anonymous authorization mechanism retained the right behavior of credential chain discovery and achieved a quantitative way of anonymity against the resource provider. Results showed that the anonymous mechanism shared the same worst-case time complexity with the traditional forward credential-chain-searching method. A method of caching all the members in the nodes was proposed to improve the performance in time spending. Simulation results showed that the performance in time spending greatly improved in the relative stable systems, in which the credentials change slowly.

LI Zhi-tang,ZHU You-jing,WANG Fu-dong

DOI: https://doi.org/10.3969/j.issn.1007-130X.2006.11.004

2006-01-01

Abstract:The current trust models of the P2P network are mostly implemented at the sacrifice of losing anonymity, which causes a new series of problems. This paper proposes a completely anonymous trust model of the P2P network,TAM,which guarantees security and anonymity by optionally using several public/private key pairs.

LIN Huai-qing,LI Zhi-tang,HUANG Qing-feng

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.18.007

2007-01-01

Abstract:Managing trust relationships are important part of trust model.An important challenge in managing such trust relationships is to design a protocol to secure the placement and access of these trust ratings.In this protocol,a verifiable threshold cryptosystem without a trusted center is applied to generate system public/private keys.K managers can generate certification for peer.The protocol provides an anonymous server for peer.The security analysis shows that the protocol has desirable features of anonymity,reliability,accountability and is secure in the presence of a variety of possible attacks.

Aiguo Chen,Guangchun Luo,Jinsheng Ren

DOI: https://doi.org/10.1587/transinf.e97.d.1656

2014-01-01

IEICE Transactions on Information and Systems

Abstract:Establishing trust measurements among peer-to-peer (P2P) networks is fast becoming a de-facto standard, and a fair amount of work has been done in the area of trust aggregation and calculation algorithms. However, the area of developing secure underlying protocols to distribute and access the trust ratings in the overlay network has been relatively unexplored. We propose an elliptic curve-based trust management protocol for P2P systems, which is designed to provide authentication and signature functions to protect the processes of trust value query and rating report. Additionally, instead of using single identities, the protocol generates two verifiable pseudonyms, one is used for transaction, the other is applied when the peer acts as a trust holding peer. A security analysis shows that the proposed protocol is extremely secure in the face of a variety of possible attacks.

Chunrui ZHANG,Fan JIANG,Ke XU

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.037

2005-01-01

Abstract:The P2P(peer to peer) technique is now used in many areas,but no good solutions have yet been developed to set up trust among peers.This paper presents a model,called P2Ptrust,which combines a local trust table and a global reputation table.Each peer endows a trust value to other peers respectively whose trades are trustworthy.And the values construct a local trust table.Each peer must save several global reputation tables which belong to other peers.This model uses the friend mechanism and unites the virtue of the local trust table and the global reputation table.This paper also introduces a solution for the sybil attack,the malicious collectives attack,and other such attacks.Simulation results show that the P2Ptrust model reduces communication overhead and is more robust with security and has better extensibility.

Peng Hao,Lu Songnian,Li Jianhua,Zhang Aixin,Zhao Dandan

DOI: https://doi.org/10.1007/978-3-642-23602-0_28

2010-01-01

Abstract:In this paper, we proposed an anonymity scheme based on pseudonym where peers are motivated not to share their identity. Compared with precious scheme such as RuP (Reputation using Pseudonyms), our scheme can reduce its overhead and minimize the trusted center's involvement.

Li-ming Hao,Shu-tang Yang,Song-nian Lu,Gong-liang Chen

DOI: https://doi.org/10.1007/s12204-008-0086-8

2008-01-01

Abstract:Trust is one of the most important security requirements in the design and implementation of peer-to-peer (P2P) systems. In an environment where peers’ identity privacy is important, it may conflict with trustworthiness that is based on the knowledge related to the peer’s identity, while identity privacy is usually achieved by hiding such knowledge. A trust model based on trusted computing (TC) technology was proposed to enhance the identity privacy of peers during the trustworthiness evaluation process between peers from different groups. The simulation results show that, the model can be implemented in an efficient way, and when the degree of anonymity within group (DAWG) is up to 0.6 and the percentage of malicious peers is up to 70%, the service selection failure rate is less than 0.15.

Min Zuo,Jian-hua Li,Gong-shen Liu

DOI: https://doi.org/10.1109/sitis.2007.73

2008-01-01

Abstract:Flat P2P communities have no authorities or supervisors to act as the root of trust, therefore trust is difficult to establish between stranger peers. A personalized P2P trust management framework is proposed in this paper, to help good peers build up trust between each other and avoid malicious peers. This framework differs from others in that it totally abandons the attempt to achieve a global view, but instead, evaluates trust from a subjective point of view and gives personalized decision support to each peer. With DHT-based backward query and collaborative-filtering-based evaluating, this new idea achieves three main advantages: free of central control, strong immunity to misleading recommendation, and limited traffic overload. We examine the performance of the proposed scheme and prove its effectiveness by a series of simulation experiments under different environmental configurations.

HE Li-Bao,HUANG Liu-Sheng,YANG Wei,LUO Yong-Long

DOI: https://doi.org/10.3969/j.issn.1671-1122.2009.07.017

2009-01-01

Abstract:Building trust relationships between entities is an important and difficult part in the security needs of P2P networks.By using appropriate assessment tools,traditional trust models can weaken some security threats such as simple deception,an omission,defamation and joint cheating to a certain extent,however they are unable to resist the attacks of Pseudospoofing and Pseudostheft effectively.In this paper,the trusted computing method initiated by Trusted Computing Group(TCG) is introduced into P2P networks,and we propose an efficient scheme on foundation and management of stable and verifiable digital identities of entities.The new designed trust model,using platform attestation technology through the whole process of trust evaluation,perfectly solved security problems of P2P networks.

Jinsong Han,Yunhao Liu,Li Xiao,Renyi Xiao,Lionel M. Ni

DOI: https://doi.org/10.1109/ipdps.2005.49

2005-01-01

Abstract:Peer-to-Peer (P2P) computing has become a popular application model because of its easy resource sharing pattern and powerful query search scheme. However, decentralized P2P architecture is scarcely seen to deploy the anonymity on its peers. In this paper, we propose a mutual anonymity protocol, called Secret-sharing-based Mutual Anonymity Protocol (SSMP), for decentralized P2P systems. SSMP employs Shamirs' secret sharing scheme to allow peers to issue queries and responders to deliver requested files anonymously. Compared with pre-vious designs, SSMP achieves mutual anonymity in P2P systems with a high degree of anonymity and a low cryptography processing overhead. We evaluate SSMP by comprehensive simulations.

Wei Feng,Zheng Yan,Haomeng Xie

DOI: https://doi.org/10.1109/access.2017.2679980

IF: 3.9

2017-01-01

IEEE Access

Abstract:Pervasive social networking (PSN) supports instant social activities anywhere and at any time with the support of heterogeneous networks, where privacy preservation is a crucial issue. One of the effective methods to achieve privacy preservation is anonymous authentication on trust. However, few literatures pay attention to it. In this paper, we propose an anonymous authentication scheme based on group signature for authenticating trust levels rather than identities of nodes in order to avoid privacy leakage and guarantee secure communications in PSN. The scheme achieves secure anonymous authentication with anonymity and conditional traceability with the support of a trusted authority (TA). We also provide a mechanism to guarantee communications among nodes when TA is not available for some nodes. In addition, the utilization of batch signature verification further improves the efficiency of authenticity verification on a large number of messages. Performance analysis and evaluation further prove that the proposed scheme is effective with regard to privacy preservation, computation complexity, communication cost, flexibility, reliability, and scalability.

Meng-shu Hou,Xianliang Lu,Xu Zhou,Chuan Zhan

DOI: https://doi.org/10.1145/1044552.1044558

2005-01-01

Abstract:The feature of the peer-to-peer system such as user anonymity, open nature makes that some peers are not responsible for their distributing inauthentic information. An effective solution is that set up the trust model in the p2p system. This paper presents a novel global trust model based on confirmation theory. The reputation of peers is calculated by C-F model according the bartering history, and then the peer decides to download the sharing file from which the peer has good reputation. Analyses and simulations show that this trust model can discard the malicious peer from p2p system effectively and improve the rate of successful barter greatly.

Zhenquan Qin,Lei Wang,Mingchu Li,Weifeng Sun

DOI: https://doi.org/10.1109/IIHMSP.2010.185

2010-01-01

Abstract:With the proliferation of P2P application, it is critical to consider how these systems can be run in a trust environment. We present a lightweight time-window based effective dynamic trust mechanism(Tw-Trust) considering the peer’s local and global trustworthiness. Simulation results show that Tw-Trust has the advantages in countering strategic altering behavior and dishonest feedbacks of malicious peers.

Lixiang Li,Jürgen Kurths,Yixian Yang,Guole Liu

DOI: https://doi.org/10.1155/2014/189213

IF: 1.43

2014-01-01

Mathematical Problems in Engineering

Abstract:In recent years, the complex network as the frontier of complex system has received more and more attention. Peer-to-peer (P2P) networks with openness, anonymity, and dynamic nature are vulnerable and are easily attacked by peers with malicious behaviors. Building trusted relationships among peers in a large-scale distributed P2P system is a fundamental and challenging research topic. Based on interpersonal relationships among peers of large-scale P2P networks, we present prevention and trust evaluation scheme, called IRTrust. The framework incorporates a strategy of identity authentication and a global trust of peers to improve the ability of resisting the malicious behaviors. It uses the quality of service (QoS), quality of recommendation (QoR), and comprehensive risk factor to evaluate the trustworthiness of a peer, which is applicable for large-scale unstructured P2P networks. The proposed IRTrust can defend against several kinds of malicious attacks, such as simple malicious attacks, collusive attacks, strategic attacks, and sybil attacks. Our simulation results show that the proposed scheme provides greater accuracy and stronger resistance compared with existing global trust schemes. The proposed scheme has potential application in secure P2P network coding.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Ruichuan Chen,Xuan Zhao,Liyong Tang,Jianbin Hu,Zhong Chen

DOI: https://doi.org/10.1007/978-3-540-73547-2_22

2007-01-01

Abstract:Peer-to-Peer communication model has the potential to harness huge amounts of resources. However, some recent studies indicate that most of current Peer-to-Peer systems suffer from inauthentic resource attacks. One way to cope with these attacks is to constitute a reputation-based trust model to help evaluating the trust values of peers and predicting their future behaviors. In this paper, we propose a global reputation-based trust model, called CuboidTrust. It builds four relations among three trust factors including contribution, trustworthiness and quality of resource, and applies power iteration to compute the global trust value of each peer. The experimental results show that CuboidTrust performs efficiently, and significantly decreases the count of inauthentic resource downloads under various threat models.