Kad网络恶意索引节点行为研究  被引量:2

Study on the Behavior of Malicious Index Nodes in Kad

在线阅读下载全文

作  者:刘丙双[1] 韦韬[1] 邹维[2] 张建宇[1] 周渊[3] 韩心慧[1] 

机构地区:[1]北京大学计算机科学技术研究所,北京100080 [2]中国科学院信息工程研究所,北京100093 [3]国家计算机网络应急技术处理协调中心,北京100029

出  处:《计算机学报》2014年第5期1124-1134,共11页Chinese Journal of Computers

基  金:国家自然科学基金(61003216;61272536)资助~~

摘  要:作为当前十分流行的P2P文件共享网络,Kad网络容易受到来自索引节点层面的攻击.索引节点负责存储资源索引,并响应其他节点的搜索请求,其行为正确性会对P2P网络服务质量产生直接的影响.文中基于Anthill测量系统,从IMDb,iTunes和Amazon网站中选取热门资源作为测量目标,在真实Kad网络中系统地测量和分析了资源共享过程中各类节点的行为;通过与标准Kad协议进行对比,对节点行为的正确性进行全面验证,从而获取恶意节点的行为特征.结果显示,目前Kad网络中存在两类恶意索引节点:选择性拒绝服务节点和无意义应答节点.这两类节点广泛存在于Kad网络中,总数高达数十万,并且其攻击行为具有相当的隐蔽性,严重干扰了正常文件搜索和下载过程.文中对两类节点的行为特征进行了深入分析,并在此基础上,提出了针对性较强、易于部署的防御方法.As one of the most popular P2P file sharing networks,Kad is vulnerable to attacksfrom index nodes.Index nodes take charge of storing resource indexes and providing responses tosearch requests.The correctness of their behavior would have direct impacts on the quality ofservice provided by P2P networks.Based on the measurement system Anthill,this paper selectedpopular resources from IMDb,iTunes and Amazon websites as targets,and systematically meas-ured and analyzed the behaviors of Kad nodes during the process of file sharing.By comparingwith the standard Kad protocol,we checked whether the behavior of some node is correct or not,and got the behavior characteristics of malicious nodes.The results show there are two kinds ofmalicious index nodes in the current Kad network:selective denial of service nodes and meaning-less response nodes,respectively.These nodes exist widely in Kad,with a population ofhundreds of thousands,and the attack behaviors have good invisibility.Therefore they seriouslydisrupt the normal processes of file searching and downloading.In this paper,we highlighted theanalysis of behavior characteristics of malicious nodes.Based on the analysis results,we proposedsome targeted and highly deployable defense methods.

关 键 词:对等网络 文件共享 索引节点 索引污染 信息安全 网络安全 

分 类 号:TP309[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象