A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do

Bernd Prünster; Christian Paul Kollmann; Bojan Suzic; Dominik Ziegler

A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do

Bernd Prünster, Christian Paul Kollmann, Bojan Suzic, Dominik Ziegler

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Separation of identity and location is one of the key properties of peer-to-peer networks. However, this separation can be abused to mount attacks against the network itself. Our contribution in this matter is twofold: First, we present a security-first design for P2P networking based on self-certifying identifiers. It provides message authenticity, integrity of routing tables, and authenticated communication, is resistant (and not only resilient) against many typical peer-to-peer-specific attacks, and guarantees uniform identifier distribution. The second aspect of our contribution disproves the often-quoted assumption that proof-of-work-based identifier generation can sufficiently hinder certain peer-to-peer attacks such as the Sybil attack. This finding seriously questions previously roposed proof-of-work-based defence mechanisms and leads to the only conclusion possible: Proof-of-work-based measures to limit arbitrary identifier generation do not stand the test of reality.

Originalsprache	englisch
Titel	Security and Privacy in Communication Networks
Redakteure/-innen	Raheem Beyah, Bing Chang, Yingjiu Li, Sencun Zhu
Erscheinungsort	Cham
Herausgeber (Verlag)	Springer International
Seiten	122-138
Seitenumfang	16
Publikationsstatus	Veröffentlicht - 2018
Veranstaltung	14th EAI International Conference on Security and Privacy in Communication Networks - , Singapur Dauer: 8 Aug. 2018 → 10 Aug. 2018 http://securecomm2018.eai-conferences.org/

Publikationsreihe

Name	Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
Band	255

Konferenz

Konferenz	14th EAI International Conference on Security and Privacy in Communication Networks
Kurztitel	SecureComm 2018
Land/Gebiet	Singapur
Zeitraum	8/08/18 → 10/08/18
Internetadresse	http://securecomm2018.eai-conferences.org/

1 Abgeschlossen
1 Laufend

A-SIT - Zentrum für sichere Informationstechnologie Austria
Stranacher, K., Dominikus, S., Leitold, H., Marsalek, A., Teufl, P., Bauer, W., Aigner, M. J., Rössler, T., Neuherz, E., Dietrich, K., Zefferer, T., Mangard, S., Payer, U., Orthacker, C., Lipp, P., Reiter, A., Knall, T., Bratko, H., Bonato, M., Suzic, B., Zwattendorfer, B., Kreuzhuber, S., Oswald, M. E., Tauber, A., Posch, R., Bratko, D., Feichtner, J., Ivkovic, M., Reimair, F., Wolkerstorfer, J. & Scheibelhofer, K.
21/05/99 → 6/08/20
Projekt: Arbeitsgebiet
SUNFISH - SUNFISH- Sicheres Teilen von Information in föderierten und hetorgenen privaten Clouds
Reiter, A., Marsalek, A., Suzic, B., Posch, R., Leitold, H. & Reimair, F.
1/01/15 → 31/12/17
Projekt: Forschungsprojekt

Dieses zitieren

Prünster, B., Kollmann, C. P., Suzic, B., & Ziegler, D. (2018). A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do. in R. Beyah, B. Chang, Y. Li, & S. Zhu (Hrsg.), Security and Privacy in Communication Networks (S. 122-138). ( Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ; Band 255). Springer International.

A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do. / Prünster, Bernd; Kollmann, Christian Paul; Suzic, Bojan et al.
Security and Privacy in Communication Networks. Hrsg. / Raheem Beyah; Bing Chang; Yingjiu Li; Sencun Zhu. Cham: Springer International, 2018. S. 122-138 ( Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ; Band 255).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Prünster, B, Kollmann, CP, Suzic, B & Ziegler, D 2018, A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do. in R Beyah, B Chang, Y Li & S Zhu (Hrsg.), Security and Privacy in Communication Networks. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering , Bd. 255, Springer International, Cham, S. 122-138, 14th EAI International Conference on Security and Privacy in Communication Networks, Singapur, 8/08/18.

Prünster B, Kollmann CP, Suzic B, Ziegler D. A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do. in Beyah R, Chang B, Li Y, Zhu S, Hrsg., Security and Privacy in Communication Networks. Cham: Springer International. 2018. S. 122-138. ( Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ).

Prünster, Bernd ; Kollmann, Christian Paul ; Suzic, Bojan et al. / A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do. Security and Privacy in Communication Networks. Hrsg. / Raheem Beyah ; Bing Chang ; Yingjiu Li ; Sencun Zhu. Cham : Springer International, 2018. S. 122-138 ( Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ).

@inproceedings{24bb24c355974006b232a05c05b441b2,

title = "A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won{\textquoteright}t Do",

abstract = "Separation of identity and location is one of the key properties of peer-to-peer networks. However, this separation can be abused to mount attacks against the network itself. Our contribution in this matter is twofold: First, we present a security-first design for P2P networking based on self-certifying identifiers. It provides message authenticity, integrity of routing tables, and authenticated communication, is resistant (and not only resilient) against many typical peer-to-peer-specific attacks, and guarantees uniform identifier distribution. The second aspect of our contribution disproves the often-quoted assumption that proof-of-work-based identifier generation can sufficiently hinder certain peer-to-peer attacks such as the Sybil attack. This finding seriously questions previously roposed proof-of-work-based defence mechanisms and leads to the only conclusion possible: Proof-of-work-based measures to limit arbitrary identifier generation do not stand the test of reality.",

author = "Bernd Pr{\"u}nster and Kollmann, {Christian Paul} and Bojan Suzic and Dominik Ziegler",

year = "2018",

language = "English",

series = " Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering ",

publisher = "Springer International",

pages = "122--138",

editor = "Raheem Beyah and Bing Chang and Yingjiu Li and Sencun Zhu",

booktitle = "Security and Privacy in Communication Networks",

note = "14th EAI International Conference on Security and Privacy in Communication Networks, SecureComm 2018 ; Conference date: 08-08-2018 Through 10-08-2018",

url = "http://securecomm2018.eai-conferences.org/",

}

TY - GEN

T1 - A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do

AU - Prünster, Bernd

AU - Kollmann, Christian Paul

AU - Suzic, Bojan

AU - Ziegler, Dominik

PY - 2018

Y1 - 2018

N2 - Separation of identity and location is one of the key properties of peer-to-peer networks. However, this separation can be abused to mount attacks against the network itself. Our contribution in this matter is twofold: First, we present a security-first design for P2P networking based on self-certifying identifiers. It provides message authenticity, integrity of routing tables, and authenticated communication, is resistant (and not only resilient) against many typical peer-to-peer-specific attacks, and guarantees uniform identifier distribution. The second aspect of our contribution disproves the often-quoted assumption that proof-of-work-based identifier generation can sufficiently hinder certain peer-to-peer attacks such as the Sybil attack. This finding seriously questions previously roposed proof-of-work-based defence mechanisms and leads to the only conclusion possible: Proof-of-work-based measures to limit arbitrary identifier generation do not stand the test of reality.

AB - Separation of identity and location is one of the key properties of peer-to-peer networks. However, this separation can be abused to mount attacks against the network itself. Our contribution in this matter is twofold: First, we present a security-first design for P2P networking based on self-certifying identifiers. It provides message authenticity, integrity of routing tables, and authenticated communication, is resistant (and not only resilient) against many typical peer-to-peer-specific attacks, and guarantees uniform identifier distribution. The second aspect of our contribution disproves the often-quoted assumption that proof-of-work-based identifier generation can sufficiently hinder certain peer-to-peer attacks such as the Sybil attack. This finding seriously questions previously roposed proof-of-work-based defence mechanisms and leads to the only conclusion possible: Proof-of-work-based measures to limit arbitrary identifier generation do not stand the test of reality.

M3 - Conference paper

T3 - Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

SP - 122

EP - 138

BT - Security and Privacy in Communication Networks

A2 - Beyah, Raheem

A2 - Chang, Bing

A2 - Li, Yingjiu

A2 - Zhu, Sencun

PB - Springer International

CY - Cham

T2 - 14th EAI International Conference on Security and Privacy in Communication Networks

Y2 - 8 August 2018 through 10 August 2018

ER -

A Holistic Approach Towards Peer-to-Peer Security and Why Proof of Work Won’t Do

Abstract

Publikationsreihe

Konferenz

Fingerprint

Projekte

A-SIT - Zentrum für sichere Informationstechnologie Austria

SUNFISH - SUNFISH- Sicheres Teilen von Information in föderierten und hetorgenen privaten Clouds

Dieses zitieren