book

Peer-to-Peer

Name: Peer-to-Peer
Author: Andy Oram
ISBN: 9781491943212

by Andy Oram

February 2001

Intermediate to advanced

450 pages

14h 13m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Special Upgrade Offer
Preface
Some context and a definitionHow this book came into beingContents of this bookPeer-to-peer web siteWe’d like to hear from you
I. Context and Overview
1. A Network of Peers: Peer-to-Peer Models Through the History of the Internet
A revisionist history of peer-to-peer (1969-1995)UsenetDNSThe network model of the Internet explosion (1995-1999)The switch to client/serverThe breakdown of cooperationSpam: Uncooperative peopleThe TCP rate equation: Cooperative protocolsFirewalls, dynamic IP, NAT: The end of the open networkAsymmetric bandwidthObservations on the current crop of peer-to-peer applications (2000)Authoring is not the same as publishingDecentralizationAbusing port 80Peer-to-peer prescriptions (2001-?)Technical solutions: Return to the old InternetSocial solutions: Engineer polite behaviorConclusions
2. Listening to Napster
Resource-centric addressing for unstable environmentsPeer-to-peer is as peer-to-peer doesThe veil is piercedReal solutions to real problemsWho’s in and who’s out?Peer-to-peer is a horseless carriageFollow the usersUsers reward simplicityListen to NapsterIt’s the applications, stupidDecentralization is a tool, not a goalWhere’s the content?PCs are the dark matter of the InternetPromiscuous computersNothing succeeds like address, or, DNS isn’t the only game in townAn explosion of protocolsAn economic rather than legal challengeAll you can eatYesterday’s technology at tomorrow’s prices, two days late30 million Britney fans does not a revolution makePeer-to-peer architecture and second-class statusUsers as consumers, users as providersNew winners and losers
3. Remaking the Peer-to-Peer Meme
From business models to meme mapsA success story: From free software to open sourceThe current peer-to-peer meme mapThe new peer-to-peer meme mapFile sharing: Napster and successorsMixing centralization and decentralization: Usenet, email, and IP routingMaximizing use of far-flung resources: Distributed computationImmediate information sharing: The new instant messaging servicesThe writable WebWeb services and content syndicationPeer-to-peer and devicesStrategic positioning and core competencies
4. The Cornucopia of the Commons
Ways to fill shared databasesCDDB: A case study in how to get a manually created databaseNapster: Harnessing the power of personal selfishnessThe commons
II. Projects
5. SETI@home
Radio SETIHow SETI@home worksTrials and tribulationsHuman factorsThe world’s most powerful computerThe peer-to-peer paradigm
6. Jabber: Conversational Technologies
Conversations and peersEvolving toward the idealJabber is createdThe centrality of XMLPieces of the infrastructureIdentityPresenceRosterArchitectureProtocolsBrowsingConversation managementConclusion

7. Mixmaster Remailers
A simple example of remailersOnion routingHow Type 2 remailers differ from Type 1 remailersGeneral discussion
8. Gnutella
Gnutella in a gnutshellA brief historyGnutella’s first breathOpen source to the rescueWhat makes Gnutella different?Gnutella works like the real worldA Gnutella cocktail partyA client/server cocktail partyClient/server means control, and control means responsibilityThe client is the server is the networkDistributed intelligenceDifferent from FreenetGnutella’s communication systemMessage-based, application-level routingTCP broadcastMessage broadcastingDynamic routingLossy transmission over reliable TCPOrganizing GnutellaPlacing nodes on the networkGnutella’s analoguesThe Gnutella horizonCellular telephony and the Gnutella networkEthernetCultivating the Gnutella networkGnutella’s traffic problemsHost cachesReturning the network to its natural statePrivate Gnutella networksReducing broadcasts makes a significant impactThe policy debatesNapster warsAnonymity and peer-to-peerGnutella pseudoanonymityDownloads, now in the privacy of your own direct connectionAnonymous Gnutella chatNext-generation peer-to-peer file-sharing technologiesGnutella’s effects
9. Freenet
RequestsDetail of requestsThe data storeKeysKey typesContent Hash Keys (CHKs)Keyword Signed Keys (KSKs)Signature Verification Keys (SVKs)Keys and redirectsConclusions
10. Red Rover
ArchitectureThe hubThe clientsThe subscribersClient life cyclePutting low-tech “weaknesses” into perspectiveAcknowledgments
11. Publius
Why censorship-resistant anonymous publishing?Publius and other systems in this bookSystem architectureCryptography fundamentalsEncryption and decryptionSecret sharingHash functionsPublius operationsPublish operationRetrieve operationUpdate operationDelete operationPublius implementationUser interfaceServer softwareClient softwarePublius MIME typePublius in a nutshell
12. Free Haven
Privacy in data-sharing systemsReliability with anonymityAnonymity for anonymous storagePartial anonymityThe design of Free HavenElements of the systemStoragePublicationRetrievalShare expirationDocument revocation Trading ReceiptsAccountability and the buddy systemCommunications channelReputation systemIntroducersImplementation statusAttacks on Free HavenAttacks on documents or the servnetAttacks on the reputation systemAttacks on anonymityAn analysis of anonymityFuture workConclusionAcknowledgments
III. Technical Topics
13. Metadata
Data about dataMetadata lessons from the WebResource descriptionSearchingResources and relationships: A historical overviewFoundations of resource description: Unique identifiersA contrasting evolution: MP3 and the metadata marketplaceConclusion
14. Performance
A note on terminologyWhy performance mattersBandwidth barriersIt’s a small, small worldAn excursion into graph theoryThe small-world modelCase study 1: FreenetInitial experimentsSimulating growthSimulating fault toleranceLink distribution in FreenetThe impact of free ridingScalabilityCase study 2: GnutellaInitial experimentsFault tolerance and link distribution in GnutellaThe impact of free ridingScalabilityConclusionsAcknowledgments
15. Trust
Trust in real life, and its lessons for computer networksTrusting downloaded softwareMessage digest functionsDigital signaturesDigital certificatesSignature verificationOpen source softwareSandboxing and wrappersTrust in censorship-resistant publishing systemsPublius in a nutshellRisks involved in web server loggingAnonymizing proxiesCensorship in PubliusUsing the Update mechanism to censorPublius proxy volunteersThird-party trust issues in PubliusOther anonymity toolsSSLMix networksCrowdsDenial of service attacksQuota systemsCPU-based payment schemesAnonymous e-cash payment schemesLegal and physical attacksTrust in other systemsMojo Nation and Free HavenThe Eternity ServiceEternity UsenetFile-sharing systemsNapsterGnutellaFreenetContent certificationTrust and search enginesDistributed search enginesDeniabilityConclusions
16. Accountability
The difficulty of accountabilitySpecial problems posed by peer-to-peer systemsPeer-to-peer models and their impacts on accountabilityPurposes of micropayments and reputation systemsJunk mail as a resource allocation problemPseudonymity and its consequencesProblems with pseudospoofing and possible defensesReputation for sale—SOLD!Common methods for dealing with flooding and DoS attacksCaching and mirroringActive caching and mirroringMicropayment schemesVarieties of micropayments or digital cashNonfungible micropaymentsExtended types of nonfungible micropaymentsNonparallelizable work functionsFungible micropaymentsFreeloadingFungible payments for accountabilityMicropayment digital cash schemesMaking money off others’ workAnonymous macropayment digital cash schemesThe use and effectiveness of micropayments in peer-to-peer systemsIdentity-based payment policiesGeneral considerations in an economic analysis of micropayment designModerating security levels: An accountability sliderReputationsEarly reputation systems onlineCodifying reputation on a wide scale: The PGP web of trustWho will moderate the moderators: SlashdotReputations worth real money: eBayA reputation system that resists pseudospoofing: AdvogatoSystem successes and failuresScoring systemsAttacks and adversariesAspects of a scoring systemCollecting ratingsBootstrappingPersonalizing reputation searchesScoring algorithmsPrivacy and information leaksDecentralizing the scoring systemMultiple trusted partiesTrue decentralizationA case study: Accountability in Free HavenMicropaymentsThe difficulty of distributed systems: How to exchange micropayments among peersMicropayments in the Free Haven contextReputation systemsOther considerations from the case studyConclusionAcknowledgments
17. Reputation
Examples of using the Reputation ServerReputation domains, entities, and multidimensional reputationsIdentity as an element of reputationInterface to the marketplaceScoring systemReputation metricsCredibilityInterdomain sharingBootstrappingLong-term visionCentral Reputation Server versus distributed Reputation ServersSummary
18. Security
Groove versus emailWhy secure email is a failureThe solution: A Groove shared spaceSecurity characteristics of a shared spaceMutually-trusting shared spacesAnatomy of a mutually-trusting shared spaceThe key to mutual trustMutually-suspicious shared spacesMessage fanoutFetching lost messagesShared space formation and trusted authenticationInviting people into shared spacesThe New-Member-Added delta messageKey versioning and key dependenciesCentral control and local autonomyPractical security for real-world collaborationTaxonomy of Groove keys
19. Interoperability Through Gateways
Why unification?Why not an ÜberNetwork?Why not an ÜberClient?Why not just use XML?One network with a thousand facesWell-known networks and their rolesFreenetGnutellaMojo NationFree Haven and PubliusProblems creating gatewaysProblems with insertsProblems with requestsFreenetGnutellaMojo NationPubliusFree HavenGateway implementationExisting projectsConclusionAcknowledgments
20. Afterword
Precedents and parriesWho gets to innovate?A clean sweep?
A. Directory of Peer-to-Peer Projects
B. Contributors
Index
Special Upgrade Offer
Copyright

Content preview from Peer-to-Peer

Chapter 18. Security

Jon Udell, BYTE.com, and Nimisha Asthagiri and Walter Tuvell, Groove Networks

Security is hard enough in traditional networks that depend on central servers. It’s harder still in peer-to-peer networks, particularly when you want to authenticate your communication partners and exchange data only with people you trust. Earlier chapters stressed protection for users’ anonymity. The need to assert identity is actually more common than the need to hide it, though the two are not mutually exclusive. As shown in Chapter 16, systems that assign pseudonyms to users need not absolve users of responsibility. This chapter touches on the interplay of identity and pseudonymity too, but will mainly focus on how to authenticate users and ensure they can communicate securely in a peer-to-peer system.

At Groove Networks Inc., we’ve developed a system that provides a type of strong security consistent with Groove’s vision of a peer-to-peer system. The details are described in this chapter. We hope that our work can serve not only as proof that traditional conservative security principles can coexist with a novel distributed system, but also as a guide to developers in other projects. Groove is a peer-to-peer groupware system. Before we focus on its security architecture, we should first explain its goals and the environment in which it operates. Using Groove, teams of collaborators form spontaneous shared spaces in which they collect the documents, messages, applications, and ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 059600110XErrata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Peer-to-Peer

by Andy Oram

Chapter 18. Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.