Chen Yang,Hu Shuang,Chen Gongliang,Li Jianhua

DOI: https://doi.org/10.1109/iccsn.2017.8230277

2017-01-01

Abstract:P2P (Peer to Peer) technology by its virtue of its inherent decentralization, autonomy, fault tolerance and scalability, it is widely applied in file sharing system. P2P file sharing system overcomes the weaknesses of traditional C/S network system like sluggish response, while also embodying security risks such as fraud and unreliable service owing to poor trust mechanism. Establishing an effective trust mechanism in P2P network is significant for improving its feasibility. First, we design a multi-dimensioned trust model, which covers time cost and risk factors and enhances the reliability of existing trust measurement. Then we purpose an improved trust and authorization mechanism, which combines our trust model with SPKI (Simple Public Key Infrastructure) to resolve the trust problem. In general, the proposed trust and authorization mechanism can effectively optimize the trust strategies of P2P file sharing system by experiment, thus ameliorate its reliability and availability, and promotes its extensive application.

Yingjie Xia,Guanghua Song,Yao Zheng,Mingzhe Zhu

DOI: https://doi.org/10.1109/wkdd.2008.28

2007-01-01

Abstract:This paper introduces R2P, a Peer-to-Peer (P2P) transfer system with role based and reputation based access control policies. With the combination of user authentication, organization authorization and scoring system, we solve the problem of resource piracy, user privacy and network jam, which exist in traditional P2P systems. The R2P system takes advantage of the X509 certificate to implement the role based access control policy. By assembling the artificial scoring and the automatic scoring components, the system evaluates the quantity and quality of the transfer resources, putting forward the reputation based access control policy. Upon the two policies and the adaptive P2P transfer model, the R2P system provides a secure, controllable and efficient resource transfer community.

Huafeng Wu,Chaojian Shi,Haiguang Chen,Chuanshan Gao

DOI: https://doi.org/10.1109/mue.2008.76

2008-01-01

Abstract:Peer-to-Peer (P2P) network systems have an open and dynamic nature for sharing files and real-time data transmission. While P2P systems have already many existing and envisioned applications, the security issue of P2P systems is still worth deeply researching. Some traditional approaches mainly rely on cryptography to ensure data authentication and integrity. These approaches, however, only addressed part of the security issues in P2P systems. In this paper, we propose a trust management model for P2P file-sharing systems. We use the incomplete experience to get the trust rating in P2P systems, and use aggregation mechanism to indirectly combine and obtain other node’s trust rating. Simulation results and analysis show that our proposed trust management model can quickly detect the misbehavior peers and limit the impacts of them in a P2P file-sharing system.

Yunhao Liu,Jinsong Han

DOI: https://doi.org/10.14711/thesis-b987542

2007-01-01

Abstract:Peer-to-Peer (P2P) model has become the mainstream of the applications in current and future Internet. Being effective in utilizing and managing globally distributed information over Internet, however, most current P2P systems do not provide protection to their users against the increasing threat from selfish peers or malicious adversaries. Anonymous and trustworthy computing hereby has continuously gained importance because it meets the users’ demands of privacy, fairness, trust, and reliability. In order to construct anonymous and trustworthy P2P systems, we must address several crucial challenges including (1) reliably and efficiently anonymizing the P2P network; (2) authenticating users’ identities; (3) enabling trust management in anonymous environments. Most existing approaches achieve anonymity via fixed paths, which are unreliable and inefficient in dynamic P2P systems. We propose two non-path based protocols to anonymize P2P systems. The results of trace driven simulations show that our proposed protocols are reliable, scalable and effective, and significantly reduce cryptographic overhead. The second issue is that the current authentication approaches face a dilemma in anonymous environments: authenticating other users needs their real identities; while the anonymity requires those users to hide their real identities. We propose a Zero-knowledge based protocol to allow users authenticate with each other without exposing their real identities. We show the effectiveness of our proposed protocol by simulation studies and prototype implementation. We solve the third issue by constructing a reputation based trust management architecture. We particularly focus on the feedback quality problem. In shorting of trusted authority centers in P2P systems, the feedback quality are easily wrecked by the dishonest feedback from malicious peers, which further degrades the computation accuracy of users’ reputation. Our proposed architecture effectively alleviates the damage on computing reputation caused by the feedback cheating. We believe that widely employing above proposed approaches will make P2P systems more secure and reliable. We also extend our study to other distributed systems and propose a privacy-preserving authentication protocol for RFID systems. Keywords: Peer-to-Peer, Anonymity, Privacy-Preserving, Authentication, Key Updating, Secret Sharing, Random Walk, Selected Flooding, Trustworthy Computing, Feedback Quality, Trust Management, Trace Driven Simulation, Zero-Knowledge Proof, Man-in-middle-attack

LIN Huai-qing,LI Zhi-tang,HUANG Qing-feng

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.18.007

2007-01-01

Abstract:Managing trust relationships are important part of trust model.An important challenge in managing such trust relationships is to design a protocol to secure the placement and access of these trust ratings.In this protocol,a verifiable threshold cryptosystem without a trusted center is applied to generate system public/private keys.K managers can generate certification for peer.The protocol provides an anonymous server for peer.The security analysis shows that the protocol has desirable features of anonymity,reliability,accountability and is secure in the presence of a variety of possible attacks.

HOU Meng-Shu,LU Xian-Liang,ZHOU Xu

2005-01-01

Computer Science

Abstract:Trust is a problem of particular importance in peer-to-peer system. However, the feature of the peer-to- peer system such as user anonymity, open nature makes that peers are not responsible for their irresponsible bartering history. This paper describes an algorithm to assess the peer which provides service based on the behavior of the peer. According bartering history and other peers recommend, the peer decides to download the sharing file from which peers. Analyses and simulations show that the model can assess the peer's reputation effectively, discard the mali- cious peer from peer-to-peer system and improve the rate of successful download greatly.

Chunrui ZHANG,Fan JIANG,Ke XU

DOI: https://doi.org/10.3321/j.issn:1000-0054.2005.10.037

2005-01-01

Abstract:The P2P(peer to peer) technique is now used in many areas,but no good solutions have yet been developed to set up trust among peers.This paper presents a model,called P2Ptrust,which combines a local trust table and a global reputation table.Each peer endows a trust value to other peers respectively whose trades are trustworthy.And the values construct a local trust table.Each peer must save several global reputation tables which belong to other peers.This model uses the friend mechanism and unites the virtue of the local trust table and the global reputation table.This paper also introduces a solution for the sybil attack,the malicious collectives attack,and other such attacks.Simulation results show that the P2Ptrust model reduces communication overhead and is more robust with security and has better extensibility.

鲍洋,卢正鼎,黄保华,李瑞轩,胡和平,路松峰

2010-01-01

Abstract:To ensure high data availability,structured P2P systems typicallyrely on data replication.However,nodes churn,concurrent updates and existence of malicious nodes in P2P environments bring new challenges to the consistency management of replicas.Agreement-based algorithms require all-to-all communication among nodes,which does not scale well in P2P environment.Regards to structured P2P systems,a Quorum based replica consistency management algorithm is proposed.Hybrid failure model is used to reduce the fault-tolerant cost,DHT service is used to handle churn,and data storage and metadata management are separated to enable data reliability and data availability to adjust independently.Simulation shows the proposed algorithm can obviously improve system scalability and reduce the fault-tolerant cost.

Zhenquan Qin,Lei Wang,Mingchu Li,Weifeng Sun

DOI: https://doi.org/10.1109/IIHMSP.2010.185

2010-01-01

Abstract:With the proliferation of P2P application, it is critical to consider how these systems can be run in a trust environment. We present a lightweight time-window based effective dynamic trust mechanism(Tw-Trust) considering the peer’s local and global trustworthiness. Simulation results show that Tw-Trust has the advantages in countering strategic altering behavior and dishonest feedbacks of malicious peers.

Feng Guofu,Zhang Jincheng,Lu Sanglu,Chen Guihai,Chen Daoxu

IF: 1.019

2008-01-01

Chinese Journal of Electronics

Abstract:The technology of replication is often used in the unstructured Peer-to-peer (P2P) systems to allocate more replicas for the hot spots in order for a higher search performance. But the questions that what is the optimal number of copies for each file and what is the practicable approach to the optimal number are seldom answered in the related works. In terms of success rate, this paper firstly investigates the optimal allocation of copies for each file according to query rate with the routing algorithm of random walks. Then a practicable method is proposed to approach the optimal allocation in the unstructured P2P systems. Our results offer a new understanding of replication and our work contributes much to the content distribution in the Internet environment.

Jinsong Han,Yunhao Liu,Li Xiao,Renyi Xiao,Lionel M. Ni

DOI: https://doi.org/10.1109/ipdps.2005.49

2005-01-01

Abstract:Peer-to-Peer (P2P) computing has become a popular application model because of its easy resource sharing pattern and powerful query search scheme. However, decentralized P2P architecture is scarcely seen to deploy the anonymity on its peers. In this paper, we propose a mutual anonymity protocol, called Secret-sharing-based Mutual Anonymity Protocol (SSMP), for decentralized P2P systems. SSMP employs Shamirs' secret sharing scheme to allow peers to issue queries and responders to deliver requested files anonymously. Compared with pre-vious designs, SSMP achieves mutual anonymity in P2P systems with a high degree of anonymity and a low cryptography processing overhead. We evaluate SSMP by comprehensive simulations.

Wu Liu,HaiXin Duan,Hong Zhang,Jianping Wu

2008-01-01

Abstract:The trust mechanism was introduced to dynamically evaluate user's behavior in P2P network, and bind user's reputation with its access control privilege in the network. In addition, the trust based dynamic access control mechanism and key algorithm was proposed and implemented. With the trust based network security management system implemented based on the trust mechanism, a malicious user will be kicked out from the network system and refused from accessing resources of the network automatically when the user's reputation is lower than some threshold.

Ming Chen-,Guangwen Yang,Xuezheng Liu,Shuming Shi,Dingxing Wang

DOI: https://doi.org/10.1360/jos161790

2005-01-01

Journal of Software

Abstract:This paper proposes a cooperative secure reliable storage system depending on pure P2P and supporting self-repair. Participant nodes of this system form an overlay by Paramecium protocol, which maintains the organization of system and provides routing service, or other compatible distributed hash table (DHT) protocols. The PKI authentication mechanism is introduced to ensure security in an open environment. Binding user data with replica identifiers supports secure auto-repair. The introduction of replica types provides secure sharing-write. Preliminary analysis and experiments demonstrate that it maintains a high reliability and read/write performance in real settings while keeping the cost of maintenance bandwidth low.

LIU Wu,DUAN Hai-Xin,ZHANG Hong,WU Jian-Ping

2008-01-01

Periodical of Ocean University of China

Abstract:In traditional network security management systems,system administrators could not prevent malicious users from illegal actions in time.This paper introduces the trust mechanism to dynamically evaluate user's reputation which is correlated with the user's privilege in the network and based on which we proposed and implemented the key algorithm of trust based access control in P2P Network.

Aiguo Chen,Guangchun Luo,Jinsheng Ren

DOI: https://doi.org/10.1587/transinf.e97.d.1656

2014-01-01

IEICE Transactions on Information and Systems

Abstract:Establishing trust measurements among peer-to-peer (P2P) networks is fast becoming a de-facto standard, and a fair amount of work has been done in the area of trust aggregation and calculation algorithms. However, the area of developing secure underlying protocols to distribute and access the trust ratings in the overlay network has been relatively unexplored. We propose an elliptic curve-based trust management protocol for P2P systems, which is designed to provide authentication and signature functions to protect the processes of trust value query and rating report. Additionally, instead of using single identities, the protocol generates two verifiable pseudonyms, one is used for transaction, the other is applied when the peer acts as a trust holding peer. A security analysis shows that the proposed protocol is extremely secure in the face of a variety of possible attacks.

Mao Yang,Qinyuan Feng,Yafei Dai,Zheng Zhang

DOI: https://doi.org/10.1109/icdcsw.2007.13

2007-01-01

Abstract:Free-riders and fake files are two important problems in P2P file sharing systems. Previous works have always used incentive mechanisms and trust mechanisms to address them respectively. In real systems however, a trust mechanism without incentive would face lack of users' enthusiasm and thus cause sparse relationship of direct trust while an incentive mechanism without trust could induce users' bad behavior. A novel reputation system is proposed in this paper that combines trust and incentive mechanisms. It uses files' vote and retention time, download volume and users' rank to construct a more extensive direct trust relationship and calculates a user's reputation with a multi-trust algorithm. It can identify fake files and provide service differentiation with reputation. Implementation and some security consideration in DHT are also discussed.

Meng-shu Hou,Xianliang Lu,Xu Zhou,Chuan Zhan

DOI: https://doi.org/10.1145/1044552.1044558

2005-01-01

Abstract:The feature of the peer-to-peer system such as user anonymity, open nature makes that some peers are not responsible for their distributing inauthentic information. An effective solution is that set up the trust model in the p2p system. This paper presents a novel global trust model based on confirmation theory. The reputation of peers is calculated by C-F model according the bartering history, and then the peer decides to download the sharing file from which the peer has good reputation. Analyses and simulations show that this trust model can discard the malicious peer from p2p system effectively and improve the rate of successful barter greatly.

Ying-Xi CHEN,Xian-You LI,Zhi GUO,Ming GU

DOI: https://doi.org/10.3969/j.issn.1002-137X.2007.08.024

2007-01-01

Computer Science

Abstract:Due to lack of effective trust management mechanism,there are a lot of deceptive behaviors in P2P networks,which seriously decrease the quality of the network services.In order to improve the quality of the download services,this paper proposes a novel P2P trust model which introduces content similarity to evaluate the peer's trust,and adaptively update the connections with its neighbors based on transaction experience.Experimental results demonstrate that this model can deal with the malicious attacks and provide good performance in terms of communication overhead and scalability.

Li-ming Hao,Shu-tang Yang,Song-nian Lu,Gong-liang Chen

DOI: https://doi.org/10.1007/s12204-008-0086-8

2008-01-01

Abstract:Trust is one of the most important security requirements in the design and implementation of peer-to-peer (P2P) systems. In an environment where peers’ identity privacy is important, it may conflict with trustworthiness that is based on the knowledge related to the peer’s identity, while identity privacy is usually achieved by hiding such knowledge. A trust model based on trusted computing (TC) technology was proposed to enhance the identity privacy of peers during the trustworthiness evaluation process between peers from different groups. The simulation results show that, the model can be implemented in an efficient way, and when the degree of anonymity within group (DAWG) is up to 0.6 and the percentage of malicious peers is up to 70%, the service selection failure rate is less than 0.15.

Baoliu Ye,Jingyang Zhou,Yang Zhang,Jiannong Cao,Daoxu Chen

DOI: https://doi.org/10.1007/978-3-540-30208-7_89

2004-01-01

Abstract:A fundamental problem in a pure Peer-to-Peer (P2P) file sharing system is how to protect the anonymity of nodes when providing efficient data access services. By seamlessly combining the technologies of multi-proxy and IP multicast together, we propose a multicast-based protocol for efficient file sharing with mutual anonymity in this paper. Furthermore, the proposed protocol can adaptively adjust file distribution and reduce the multicast cost simultaneously. The simulations show that Mapper possesses the merits of scalability, reliability, and high adaptability with high performance.