Name
Abstract | ||
|---|---|---|
Misconfigured P2P traffic caused by bugs in volunteer-developed P2P software or by attackers is prevalent. It influences both end users and ISPs. In this paper, we discover and study address-misconfigured P2P traffic, a major class of such misconfiguration. P2P address misconfiguration is a phenomenon in which a large number of peers send P2P file downloading requests to a ``random'' target on the Internet. On measuring three Honeynet datasets spanning four years and across five different /8 networks, we find address-misconfigured P2P traffic on average contributes 38.9% of Internet background radiation, increasing by more than 100% every year. In this paper, we design the P2PScope, a measurement tool, to detect and diagnose such unwanted traffic. We find, in all the P2P systems, address misconfiguration is caused by resource mapping contamination, i.e., the sources returned for a given file ID through P2P indexing are not valid. Different P2P systems have different reasons for such contamination. For eMule, we find that the root cause is mainly a network byte ordering problem in the eMule Source Exchange protocol. For BitTorrent misconfiguration, one reason is that anti-P2P companies actively inject bogus peers into the P2P system. Another reason is that the KTorrent implementation has a byte order problem. We also design approaches to detect anti-P2P peers without false positives. |
Year | DOI | Venue |
|---|---|---|
2011 | 10.1109/INFCOM.2010.5461939 | San Diego, CA |
Keywords | Field | DocType |
internet background radiation,p2p address misconfiguration,address misconfigured p2p traffic,p2p software,computer network management,p2p file,p2p indexing,emule source exchange protocol,measurement tool,network byte ordering problem,bittorrent misconfiguration,p2p traffic,program debugging,bogus peers,bugs,internet,unwanted traffic,volunteer developed p2p software,p2p system,p2p file downloading,telecommunication traffic,peer-to-peer computing,address misconfiguration,p2pscope,random target,honeynet dataset,security of data,indexing,bittorrent,indexation,p2p,false positive,internet traffic,servers,protocols,contamination,background radiation,computer bugs,traffic flow | Honeypot,Byte,Computer security,Computer science,Upload,Software bug,Server,Computer network,BitTorrent,Root cause,The Internet | Journal |
Volume | Issue | ISSN |
25 | 3 | 0743-166X |
ISBN | Citations | PageRank |
978-1-4244-5836-3 | 5 | 0.58 |
References | Authors | |
15 | 4 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Zhichun Li | 1 | 814 | 41.48 |
| Anup Goyal | 2 | 37 | 2.07 |
| Yan Chen | 3 | 3842 | 220.64 |
| Aleksandar Kuzmanovic | 4 | 960 | 71.99 |