SSDHT：基于社交网络的DHT安全增强机制

doi:10.11959/j.issn.1000-0801.2018276

电信科学 ›› 2018, Vol. 34 ›› Issue (11): 10-20.doi: 10.11959/j.issn.1000-0801.2018276

SSDHT：基于社交网络的DHT安全增强机制

李攀攀¹,谢正霞²,乐光学¹,马柏林¹,陈丽¹,刘建华^3,⁴

¹ 嘉兴学院数理与信息工程学院，浙江嘉兴 314001
² 嘉兴学院建筑工程学院，浙江嘉兴 314001
³ 上海师范大学信息与机电工程学院，上海 200234
⁴ 绍兴文理学院计算机科学与工程系，浙江绍兴 312000

修回日期:2018-10-31 出版日期:2018-11-01 发布日期:2018-12-06
作者简介:李攀攀（1983-），男，博士，嘉兴学院数理与信息工程学院讲师，主要研究方向为社交网络、网络安全、云计算等。|谢正霞（1982-），女，嘉兴学院建筑工程学院工程师，主要研究方向为社交网络、智能算法、云计算等。|乐光学（1963-），男，博士，嘉兴学院数理与信息工程学院教授，主要研究方向为多云融合与协同服务、无线mesh网络与移动云计算、混成与嵌入式系统等。|马柏林（1961-），男，博士，嘉兴学院数理与信息工程学院教授，主要研究方向为调和分析与小波分析、信号分析等。|陈丽（1975-），女，博士，嘉兴学院数理与信息工程学院讲师，主要研究方向为移动通信、移动感知网络及机器学习等。|刘建华（1978-），男，博士，上海师范大学信息与机电工程学院副教授，绍兴文理学院计算机科学与工程系副教授，主要研究方向为无线传感器网络、云计算、网络与信息安全等。
基金资助:
国家自然科学基金资助项目(61572014);浙江省自然科学基金资助项目(LY16F020028);浙江省自然科学基金资助项目(LY15F020040)

SSDHT:social network-based secure DHT mechanism

Panpan LI¹,Zhengxia XIE²,Guangxue YUE¹,Bolin MA¹,Li CHEN¹,Jianhua LIU^3,⁴

¹ College of Mathematics and Information and Engineering,Jiaxing University,Jiaxing 314001,China
² College of CML Engineering and Architecture,Jiaxing University,Jiaxing 314001,China
³ College of Information,Mechanical and Electrical Engineering,Shanghai Normal University,Shanghai 200234,China
⁴ Department of Computer Science and Engineering,Shaoxing University,Shaoxing 312000,China

Revised:2018-10-31 Online:2018-11-01 Published:2018-12-06
Supported by:
The National Natural Science Foundation of China(61572014);Zhejiang Provincial Natural Science Foundation of China(LY16F020028);Zhejiang Provincial Natural Science Foundation of China(LY15F020040)

摘要/Abstract

摘要：

P2P系统在文件共享等领域中得到了广泛的应用，但DHT（distributed hash table）网络无中心、无认证、缺乏节点身份验证机制，使得现有的基于DHT的P2P系统易受到Sybil攻击等外部攻击。提出一种基于社交网络的DHT安全增强机制，将社交网络中节点的信任关系引入DHT网络中提高对Sybil节点的识别能力。以KAD（Kademlia）算法为例进行了实验验证，基于Facebook和Twitter数据集的实验结果表明本文提出的安全机制适用于大规模动态的网络，能够有效防御Sybil攻击。

关键词: P2P, DHT, 社交网络, Sybil攻击

Abstract:

P2P systems have been widely used in the field of file sharing,etc.However,DHT (distributed hash table) networks have no center,no authentication,and lack of node authentication mechanism,making existing DHT-based P2P systems vulnerable to external attacks such as Sybil attacks.A DHT security enhancement mechanism based on social network was proposed,which introduced the trust relationship of nodes in the social network into the DHT network to improve the recognition ability of Sybil nodes.The KAD (Kademlia) algorithm was used as an example to verify the experiment.Experimental results based on Facebook and Twitter datasets show that the proposed security mechanism is suitable for large-scale dynamic networks and can effectively defend against Sybil attacks.

Key words: P2P, distributed hash table, social network, Sybil attack

中图分类号:

TP309

李攀攀,谢正霞,乐光学,马柏林,陈丽,刘建华. SSDHT：基于社交网络的DHT安全增强机制[J]. 电信科学, 2018, 34(11): 10-20.

Panpan LI,Zhengxia XIE,Guangxue YUE,Bolin MA,Li CHEN,Jianhua LIU. SSDHT:social network-based secure DHT mechanism[J]. Telecommunications Science, 2018, 34(11): 10-20.

图/表 9

表1

现有基于社交网络的DHT系统"

方法	路由表	通信方式	路由查询	动态网络
Whanau	$O (\sqrt{n l b n})$	直接通信	快	不适合
X-vince	O(lbn)	间接通信	慢	不适合

表1

图1

图2

图3

图4

表2

图5

图6

表3

参考文献 27

[1]	中国互联网络信息中心.第41次《中国互联网络发展状况统计报告》[R]. 2018.
	CNNIC.The 41st “Statistical report on the development of China’s internet”[R]. 2018.
[2]	史建焘, 张宏莉 . KAD网络负载均衡技术研究[J]. 电信科学, 2012,28(6): 68-72.
	SHI J T , ZHANG H L . Study on load balancing of KAD network[J]. Telecommunications Science, 2012,28(6): 68-72.
[3]	CHAN C , CHAN S . Distributed hash tables:design and applications[M]// Handbook of Peer-to-Peer Networking. Berlin:Springer Science, 2010: 257-280.
[4]	DOUCEUR J R . The Sybil attack[J]. Lecture Notes in Computer Science, 2002,65(1): 251-260.
[5]	肖禄, 黄韬, 刘江 ,等. 一种基于物理拓扑的 DHT 物联网解析机制[J]. 电信科学, 2012,28(6): 25-32.
	XIAO L , HUANG T , LIU J ,et al. A novel resolution service for internet of things based on physically topological DHT[J]. Telecommunications Science, 2012,28(6): 25-32.
[6]	JAN M A , NANDA P , HE X ,et al. A Sybil attack detection scheme for a forest wildfire monitoring application[J]. Future Generation Computer Systems, 2018(80): 613-626.
[7]	WANG C , ZHU L , GONG L ,et al. Accurate sybil attack detection based on fine-grained physical channel information[J]. Sensors, 2018,18(3):878.
[8]	BOTT J , MILKAU U . Towards a framework for the evaluation and design of distributed ledger technologies in banking and payments[J]. Journal of Payments Strategy ＆ Systems, 2016,10(2): 153-171.
[9]	WANG G , MUSAU F , GUO S ,et al. Neighbor similarity trustagainst sybil attack in P2P E-commerce[J]. IEEE Transactions on Parallel and Distributed Systems, 2015,26(3): 824-833.
[10]	ZHENG Y , LIN F , YANG Y ,et al. Adaptive resource scheduling mechanism in P2P file sharing system[J]. Peer-to-Peer Networking and Applications, 2016,9(6): 1089-1100.
[11]	JAN M A , NANDA P , HE X ,et al. A Sybil attack detection scheme for a forest wildfire monitoring application[J]. Future Generation Computer Systems, 2018(80): 613-626.
[12]	RAJA K N , BENO M M . Secure data aggregation in wireless sensor network-Fujisaki Okamoto (FO) authentication scheme against sybil attack[J]. Journal of medical systems, 2017,41(7):107.
[13]	FREEDMAN M J , MORRIS R . Tarzan:a peer-to-peer anonymizing network layer[C]// The 9th ACM Conference on Computer and Communications Security,November 17-21,2002,Washington,DC,USA. New York:ACM Press, 2002: 193-206.
[14]	RAJA K N , BENO M M . Secure data aggregation in wireless sensor network-Fujisaki Okamoto (FO) authentication scheme against sybil attack[J]. Journal of Medical Systems, 2017,41(7):107.
[15]	MARTI S , GANESAN P , GARCIA-MOLINA H . DHT routing using social links[M]. Berlin: Springer Berlin HeidelbergPress, 2005: 100-111.
[16]	DANEZIS G , LESNIEWSKI-LAAS C , KAASHOEK M ,et al. Sybil-resistant DHT routing[C]// The 10th European Symposium on Research in Computer Security,September 12-14,2005,Milan,Italy. Berlin:Springer, 2005: 305-318.
[17]	YU H , KAMINSKY M , GIBBONS P B ,et al. Sybilguard:defending against sybil attacks via social networks[J]. IEEE/ACM Transactions on Networking, 2008,16(3): 576-589.
[18]	YU H , GIBBONS P B , KAMINSKY M ,et al. Sybillimit:a near-optimal social network defense against Sybil attacks[J]. IEEE/ACM Transactions on Networking, 2010,18(3): 885-898.
[19]	BOYD S , GHOSH A , PRABHAKAR B ,et al. Gossip algorithms:design analysis and applications[C]// IEEE INFOCOM 2005,March 13-17,2005,Miami,FL,USA. Piscataway:IEEE Press, 2005.
[20]	FLAXMAN A D . Expansion and lack thereof in randomly perturbed graphs[J]. Internet Mathematics, 2007,4(2-3): 131-147.
[21]	TRAN N , MIN B , LI J ,et al. Sybil-resilient online content voting[C]// The 6th USENIX Symposium on Networked Systems Design and Implementation (NSDI’09),April 22-24,2009,Boston,Massachusetts,USA. New York:ACM Press, 2009: 15-28.
[22]	LESNIEWSKI-LAAS C , . A Sybil-proof one-hop DHT[C]// The First Workshop on Social Network Systems (SocialNets’08),April 1,2008,Glasgow,Scotland,UK. New York:ACM Press, 2008: 19-24.
[23]	LESNIEWSKI-LASS C , KAASHOEK M F . Whanau:aSybil-proof distributed hash table[C]// 7th USENIX Symposium on Network Design and Implementation,April 28-30,2010,San Jose,California,USA. New York:ACM Press, 2010: 3-17.
[24]	MITTAL P , CAESAR M . X-Vine:secure and pseudonymous routing using social networks[J]. Corr, 2012.
[25]	LIU B , WEI T , ZHANG C ,et al. Improving lookup reliability in KAD[J]. Peer-to-Peer Networking and Applications, 2015,8(1): 156-170.
[26]	REZVANIAN A , MEYBODI M R . Sampling algorithms for weighted networks[J]. Social Network Analysis and Mining, 2016,6(1):60.
[27]	KWAK H , LEE C , PARK H ,et al. What is Twitter,a social network or a news media?[C]// The 19th International Conference on World Wide Web,April 26-30,2010,Raleigh,NC,USA. New York:ACM Press, 2010: 591-600.

数据集	节点数	边数	节点的平均度
Facebook数据集	9 495	219 334	23.1
Twitter数据集	13 440	768 670	57.1

k桶大小	Facebook数据集			Twitter数据集
k桶大小	r=1	r=5	r=10	r=1	r=5	r=10
1	56.4	25.4	17.4	43.3	21.4	14.0
2	39.8	19.1	14.9	32.6	17.8	11.7
5	34.3	17.2	12.3	27.2	13.1	10.3

SSDHT：基于社交网络的DHT安全增强机制

SSDHT:social network-based secure DHT mechanism

在线阅读

PDF下载

可视化

摘要/Abstract

引用本文

使用本文

图/表 9

参考文献 27

相关文章 15

Metrics

推荐阅读 0

[1]	房新彦, 张艳霞, 崔瑞琳, 罗思维. P2P网络视频监控技术机制解析[J]. 电信科学, 2022, 38(12): 152-162.
[2]	徐海勇,陶涛,黄岩,唐崔巍,张兆静,吴晶. 基于社交网络分析的流量红包客户挖掘与传播模式[J]. 电信科学, 2020, 36(8): 139-150.
[3]	张科,孙越佳,韩海. 基于协同过滤与社交网络混合算法的客户信用建模及授信方法[J]. 电信科学, 2020, 36(2): 52-60.
[4]	顾秋阳,吴宝,琚春华. 融入词汇共现的社交网络用户情感Biterm主题模型[J]. 电信科学, 2020, 36(11): 47-60.
[5]	顾秋阳,琚春华,吴功兴. 融入用户合作与领导激励的社交网络知识传播模型[J]. 电信科学, 2020, 36(10): 172-182.
[6]	王莉,冯志勇,张平. 面向分布式缓存系统的无线资源管理：动机、挑战与方法[J]. 电信科学, 2017, 33(3): 83-94.
[7]	马丽芳,陈伟峰,兰世战,陆松,张玉兰,莫晓斌,何昌智. 基于蚁群优化的移动P2P网络路由选择算法[J]. 电信科学, 2016, 32(7): 121-125.
[8]	合尼古力·吾买尔. ACO结合P2P信任模型的无线传感器网络Sinkhole攻击检测[J]. 电信科学, 2016, 32(4): 52-58.
[9]	朱国晖,鲁春兰,张瑞. 非结构化P2P网络引导型进化博弈算法[J]. 电信科学, 2016, 32(1): 60-65.
[10]	廖建新. 大数据技术的应用现状与展望[J]. 电信科学, 2015, 31(7): 1-12.
[11]	王瑞琴,潘俊,李一啸. 基于多社交数据源的协同推荐方法研究[J]. 电信科学, 2015, 31(6): 68-74.
[12]	沈士根,黄龙军,胡珂立,李宏杰,韩日昇,曹奇英. 基于微分博弈的在线社交网络恶意程序传播优化控制方法[J]. 电信科学, 2015, 31(10): 66-73.
[13]	亓晋,许斌,胡筱旋,徐匾珈,肖星琳. 基于用户行为认知的在线社交网络协同推荐[J]. 电信科学, 2015, 31(10): 108-114.
[14]	琚春华,黄治移,鲍福光. 融入音乐子人格特质和社交网络行为分析的音乐推荐方法[J]. 电信科学, 2015, 31(10): 115-123.
[15]	钱亚冠,张旻. 基于过抽样技术的P2P流量识别方法[J]. 电信科学, 2014, 30(4): 109-113.