Slashdot Mirror

← Back to Stories (view on slashdot.org)

Researchers Outline Targeted Content Poisoning For P2P Data

Posted by timothy on from the subscribe-to-your-shackles dept.

Diomidis Spinellis writes "Two USC researchers published a paper in the prestigious IEEE Transactions on Computers that describes a technique for p2p content poisoning targeted exclusively at detected copyright violators. Using identity-based signatures and time-stamped tokens they report a 99.9 percent prevention rate in Gnutella, KaZaA, and Freenet and a 85-98 percent prevention rate on eMule, eDonkey, and Morpheus. Poison-resilient networks based on the BitTorrent protocol are not affected. Also the system can't protect small files, like a single-song MP3. Although the authors don't say so explicitly, my understanding is that the scheme is only useful on commercial p2p distribution systems that adopt the proposed protocol."

17 of 201 comments (clear)

  1. Researcher is the wrong word. by Darkness404 · · Score: 5, Insightful
    I'm not exactly sure "researcher" is the right word here. From the paper

    Abstract: Today's peer-to-peer (P2P) networks are grossly abused by Illegal distributions of music, games, video streams, and popular software. These abuses have resulted in heavy financial loss in media and content industry. Collusive piracy is the main source of intellectual property violations within the boundary of P2P networks. This problem is resulted from paid clients (colluders) illegally sharing copyrighted content files with unpaid clients (pirates). Such an on-line piracy has hindered the use of open P2P networks for commercial content delivery. We propose a proactive poisoning scheme to stop colluders and pirates from working together in alleged copyright infringements in P2P file sharing. The basic idea is to detect pirates with identity- based signatures and time-stamped tokens. Then we stop collusive piracy without hurting legitimate P2P clients. We developed a new peer authorization protocol (PAP) to distinguish pirates from legitimate clients. Detected pirates will receive poisoned chunks in repeated attempts. A reputation-based mechanism is developed to detect colluders. The system does not slow down legal download from paid clients. The pirates are severely penalized with no chance to download successfully in finite time. Based on simulation results, we find 99.9% success rate in preventing piracy on file-level hashing networks like Gnutella, KaZaA,Area, LimeWire, etc. Our protection scheme achieved 85-98% prevention rate on part-level hashing networks like eMuel, Shareaz, eDonkey, Morpheus, etc. Our new scheme enables P2P technology for building a new generation of content delivery networks (CDNs). These P2P-based CDNs provide faster delivery speed, higher content availability, and cost-effectiveness than using conventional CDNs built with huge network of surrogate servers.

    This isn't unbiased in the least. Sure, arguably it is "research" but calling them researchers from an university makes them seem neutral at best.

    --
    Taxation is legalized theft, no more, no less.
    1. Re:Researcher is the wrong word. by s-whs · · Score: 5, Insightful

      ] Researcher is the wrong word.

      I was thinking the same thing. But not necessarily based on them being biased, but for this: Why would anyone want to 'research' this? I can understand making a protocol resilient to poisoning (same as making a computer resilient to virus attacks, there will always be a-holes trying to mess things up wether legal or illegal), or making it faster, adding some nifty features perhaps. But poisoning to prevent illegal sharing with the pathetic argument that this hinders commercial distribution? What kind of a researcher is that? A RIAA paid one I'd guess. Possibly as valuable as those 'researchers' for tobacco companies who said there was no health problem with smoking.

    2. Re:Researcher is the wrong word. by Darkness404 · · Score: 5, Insightful

      Exactly, I was reading into the article thinking it would be presented as a vulnerability or proof of concept that could be exploited by the RIAA, not that the entire thing seemed to be written especially for the RIAA.

      --
      Taxation is legalized theft, no more, no less.
    3. Re:Researcher is the wrong word. by cortesoft · · Score: 4, Funny

      of COURSE they aren't real researchers. The summary writer mistakenly thought the study authors were from UCLA, which would mean they would have been some of the smartest, unbiased, amazing people in the world. However, they were actually from USC, meaning they were spoiled, unprofessional, RIAA lapdogs who also smell.

      And yes I happened to go to UCLA, but that is besides the point.

    4. Re:Researcher is the wrong word. by siloko · · Score: 4, Insightful

      Researchers find a topic that interests them and follow through on some hunch. When they have found out something potentially publishable (the meat and potatoes of a researchers career) they big it up. This abstract reads exactly like that - "we did some work and this is why it's the most important work in the world" - the fact that the spiel coincides with the RIAA party line is probably coincidence.

  2. Actually by Renraku · · Score: 4, Interesting

    Actually, poisoning P2P networks as a commercial venture could be prosecuted as theft-by-deception.

    Stealing bandwidth is a crime. Downloading songs isn't, if you aren't profiting form it.

    --
    Job? I don't have time to get a job! Who will sit around and bitch about being broke and unemployed then?
    1. Re:Actually by Darkness404 · · Score: 4, Insightful

      And so is DDoS attacks, but that sure didn't stop the RIAA from using MediaDefender ( http://en.wikipedia.org/wiki/MediaDefender )

      --
      Taxation is legalized theft, no more, no less.
  3. Copyright violators by wigaloo · · Score: 4, Insightful

    Two UCLA researchers published a paper in the prestigious IEEE Transactions on Computers that describes a technique for p2p content poisoning targeted exclusively at detected copyright violators.

    What's to prevent poisoning legal p2p? There are plenty of examples of copyrights being inappropriately asserted. The technology itself doesn't discriminate.

  4. The dawn of a new age by mewsenews · · Score: 5, Insightful

    Humans had discovered methods to speedily and automatically transmit mountainous volumes of data. It was a new frontier, a utopia where information was shared peacefully between the people who wanted to see it. And what was its downfall? Not the anarchists, or the communists, or the Islamic fundamentalists, but the so called leaders of the free world.

    "We had to do it," they said, "there is such a thing as too much freedom."

  5. Freenet by evanbd · · Score: 4, Interesting

    The paper won't download here, so I'm asking without RTFA, but how can this work against Freenet? Do they discuss Freenet in the paper at all? Freenet does chunk-level hashing, and the network enforces that the data matches the hash at all steps. Nodes returning invalid data will rapidly get dropped by their peers. Attacks like this are something that Freenet is explicitly designed to prevent. Also, the anonymity guarantees that Freenet makes would make it hard (potentially very hard) for them to identify a single user, let alone "collusion".

    I'm forced to wonder whether the researchers mention Freenet at all, or if the poster is simply lumping Freenet in with other p2p apps that it has very little in common with. (Bittorrent and Freenet should be similar in some ways to their resistance against this attack, but Freenet's strong anonymity guarantees should make it more resistant. The fact that a node engaged in widespread poisoning will have trouble even staying connected makes Freenet even more resistant.)

    1. Re:Freenet by Anonymous Coward · · Score: 4, Insightful

      They lump Freenet into the category of "Gnutella-like networks", and say that their attack against gnutella should also work against Freenet since it is Gnutella-like (p.2 and p.12).

      In other words, it is as you said, they are lumping it together with other networks.

      It makes me question the quality of their research if they think that Freenet is so similar to Gnutella that the same class of attacks would work against both.

    2. Re:Freenet by calmofthestorm · · Score: 4, Interesting

      This is utterly absurd. The verification on freenet is based on asymmetric crypto. If they haven't broken that, the most they can do is flood the network with corrupt chunks, in which case the software will just start dropping peers who send too many corrupt packets at too high a rate. Translation: you need # of bad guys >> # of good guys to have much of an impact on network quality. And of course it's complete trash against a darknet, but I doubt these guys know what that is.

      Given the subject matter, weasel words, and shoddy methodology, I'm about as worried about this as I am about the zombie communist terrorist invasion predicted for 2012.

      --
      93rd rule of Slashdot: No matter how obvious my sarcasm is, my comment will be taken seriously by someone.
  6. Re:This needs to be fought by ravenshrike · · Score: 4, Funny

    'mechanical law of nature'

    I don't think that phrase means what you think it means.

  7. Re:Ratios for overseeded torrents? by Bigjeff5 · · Score: 4, Informative

    Have you ever actually used a bittorent client before?

    There is no such thing as an overseeded torrent. There are underseeded torrents, and those are frustrating, but there is no such thing as an overseeded torrent. The general idea with upload ratio requirements is that it encourages you to never stop seeding a torrent. If 100 people are seeding and only 3 are downloading, those three get the file extremely fast, and your bandwidth isn't taxed. If you download enough content that you are on a private tracker, then you should have a number of torrents to share. If you aren't downloading all that much, then it will be easy to keep a 100%+ share ratio. If you ARE downloading a lot, you should still be in the 50% range, and eventually you will hit critical mass and the ammount you download won't be able to keep up with the amount you upload.

    It's good for everybody. Plus, if a private tracker has a very high seed rate, chances are the required share ratio will be lowered. It creates a win-win situation.

    Remember, no such thing as an overseeded torrent. If you download a lot, you WILL share a lot. If you keep sharing after you download, you will soon be sharing more than you download. People move on, quit sharing, lose their computers, etc.

    Your share ratio math ignores a lot of things that reduce the amount of data on the network which occur all the time. It's actually pretty easy to exceed 100% share ratios for everybody on the network. If you can't see how it's because you've locked yourself in a tiny box and completely ignored outside factors which remove data and introduce data without affecting increasing the amount of data a person can download. Whenever someone adds a new download to the tracker, the potential share ratio for everyone in the network increases. Whenever a new member joins, the potential share ratio for everyone on the network increases. Eventually it balances out to 100%, but the network is ever changing so it never actually gets there.

    --
    Security is mostly a superstition... Avoiding danger is no safer in the long run than outright exposure. - Helen Keller
  8. Paper summary by creidieki · · Score: 5, Informative

    As a comp sci grad student, here's what I got from a quick reading of this paper:

    Imagine that you're a content provider, with paying users. You've decided to distribute content to your users by running a Gnutella-style network. How do we make sure that only paying users can get our content? After all, it's an open network.

    We start by sending some sort of magic timestamp-thing to all of the paying users. I didn't read this part in much detail. Anyway, the paying users can all identify each other somehow. They mention that it maintains privacy.

    Some of your paying users (the "Clients") are good, virtuous folk, and they're running the Happy Authorized Gnutella software you gave them. Others (the "Colluders") are running Evil Hacked software. No matter what you do, the Colluders are going to send chunks of your precious data to the "Pirates" (anyone who hasn't paid you).

    Normally, we'd expect our Clients to ignore requests from our Pirates. This paper instead suggests: let's obligate the Clients to send poison data to the Pirates! The Pirates won't know which chunks are bad; they'll only find out that the file is corrupt once it's finished downloading. The Pirates won't be able to get a good copy, and they'll give up and go away.

    And there's one other great thing: we can set up *fake* Pirates, and check which users aren't giving out the poison they're supposed to! So we've served data to all of the Clients; we've identified all of the Colluders; and we've defeated all of the Pirates.

    (Bittorrent has data integrity checks for every chunk, instead of every file; that's why it's not vulnerable to this attack...I mean business model).

    In summary: This paper describes a way that a company can charge for distributing their own content on a peer-to-peer network. It only works if they control a centralized "transaction server" thThat's why no one has ever at organizes the entire network, and if they control the software of all the "honest" people. They can't destroy our existing networks with it, and it doesn't prevent anyone from turning around and posting the file to BitTorrent once it's downloaded.

    The tone of the paper is definitely not as neutral as I feel it should be. What they're trying to say is "there's no obvious way to charge people for running a Gnutella server, because pirates will eat your lunch. But we think we have a way." But it definitely feels like they're putting moral force behind what's really a network algorithms result.

  9. Re:Adopting the proposed protocol? by Joce640k · · Score: 4, Insightful

    They already tried this about five years ago with poisoned servers. What happened? The Kad search mechanism was adopted and the servers were useless.

    The same thing will happen here, the protocol will change, the poisoners will have wasted a lot of money and achieved nothing.
     

    --
    No sig today...
  10. SLASHDOT SUMMARY IS WRONG by Alsee · · Score: 4, Informative

    I'm part way through the research paper, the article summary is just plain wrong.

    There is no vulnerability here. They CANNOT poison Gnutella, KaZaA, and Freenet, eMule, eDonkey, Morpheus, or any other existing network with this technique. To quote the paper: Presently none of these P2P networks has built with satisfactory support for copyright protection.

    The "problem" they want to "solve" is that existing networks to not possess adequate support for poisoning attacks. This paper proposes creating a NEW additional P2P network. They propose deliberately building in special support to ENABLE poisoning attacks.

    While I'm sure the RIAA will eagerly read it over while dreaming of world conquest by releasing their own deliberately crippled "legal P2P network" where they get paid for each authorized client-to-client transfer. As far as most readers here are concerned, this is a completely non-newsworthy story, the contents of this paper are completely irrelevant and harmless. There is absolutely nothing new or surprising about the fact that you can deliberately make your software insecure and you can deliberately leave it vulnerable to poisoning. Yes, a P2P new network could be built Defective By Design.

    -

    --
    - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.