English
 
Help Privacy Policy Disclaimer
  Advanced SearchBrowse

Item

ITEM ACTIONSEXPORT
 
 
DownloadE-Mail
  Eclipse Attacks on Overlay Networks: Threats and Defenses

Singh, A., Ngan, T.-W.-"., Druschel, P., & Wallach, D. S. (2006). Eclipse Attacks on Overlay Networks: Threats and Defenses. In 25th IEEE International Conference on Computer Communications (INFOCOM 2006). Barcelona, Spain: IEEE.

Item is

Files

show Files
hide Files
:
Eclipse-Infocom.pdf (Any fulltext), 192KB
 
File Permalink:
-
Name:
Eclipse-Infocom.pdf
Description:
-
OA-Status:
Visibility:
Private
MIME-Type / Checksum:
application/pdf
Technical Metadata:
Copyright Date:
-
Copyright Info:
eDoc_access: PUBLIC
License:
-

Locators

show

Creators

show
hide
 Creators:
Singh, Atul1, Author           
Ngan, Tsuen-Wan "Johnny", Author
Druschel, Peter1, Author           
Wallach, Dan S., Author
Affiliations:
1Group P. Druschel, Max Planck Institute for Software Systems, Max Planck Society, ou_2105287              

Content

show
hide
Free keywords: -
 Abstract: Overlay networks are widely used to deploy functionality at edge nodes without changing network routers. Each node in an overlay network maintains connections with a number of peers, forming a graph upon which a distributed application or service is implemented. In an “Eclipse” attack, a set of malicious, colluding overlay nodes arranges for a correct node to peer only with members of the coalition. If successful, the attacker can mediate most or all communication to and from the victim. Furthermore, by supplying biased neighbor information during normal overlay maintenance, a modest number of malicious nodes can eclipse a large number of correct victim nodes. This paper studies the impact of Eclipse attacks on structured overlays and shows the limitations of known defenses. We then present the design, implementation, and evaluation of a new defense, in which nodes anonymously audit each other’s connectivity. The key observation is that a node that mounts an Eclipse attack must have a higher than average node degree. We show that enforcing a node degree limit by auditing is an effective defense against Eclipse attacks. Furthermore, unlike most existing defenses, our defense leaves flexibility in the selection of neighboring nodes, thus permitting important overlay optimizations like proximity neighbor selection (PNS).

Details

show
hide
Language(s): eng - English
 Dates: 2007-04-132006
 Publication Status: Issued
 Pages: -
 Publishing info: -
 Table of Contents: -
 Rev. Type: -
 Identifiers: eDoc: 314349
Other: C125718C00511B58-DD188957C93C7BFAC12572BC0055107A-singh-2006-eclipse
 Degree: -

Event

show

Legal Case

show

Project information

show

Source 1

show
hide
Title: 25th IEEE International Conference on Computer Communications (INFOCOM 2006)
Source Genre: Proceedings
 Creator(s):
Affiliations:
Publ. Info: Barcelona, Spain : IEEE
Pages: - Volume / Issue: - Sequence Number: - Start / End Page: - Identifier: -