Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reliable Communication in Unknown Networks Lakshmi Subramanian Joint work with: Randy Katz, Volker Roth, Scott Shenker, Ion Stoica.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Reliable Communication in Unknown Networks Lakshmi Subramanian Joint work with: Randy Katz, Volker Roth, Scott Shenker, Ion Stoica."— Presentation transcript:

1 Reliable Communication in Unknown Networks Lakshmi Subramanian Joint work with: Randy Katz, Volker Roth, Scott Shenker, Ion Stoica

2 Reliable communication problem Good node Adversarial node Given a graph G, how do two good nodes reliably communicate in the presence of adversarial nodes attempting to disrupt the communication

3 Challenges to reliable communication Lack of knowledge of which nodes are adversarial Adversarial nodes can potentially –Modify messages traversing them –Generate spurious messages on behalf of good nodes –Collude with other adversaries using out-of- band communication Absence of a public key infrastructure to enable originators to sign messages

4 Lamport’s Result If every node is aware of the entire graph G and G is (2k+1) vertex connected, then two good nodes can reliably communicate provided #adversaries <= k –Source route the message along (2k+1) vertex disjoint paths and compute consensus –This result is also a lower bound Reliable communication vs Byzantine consensus –Reliable communication is a necessary building block for byzantine agreement

5 What if the graph is not known? What if a node is aware only its neighbors but not the entire network? neighborhood of a node

6 Reliable communication in unknown networks Input: Given a graph G with n nodes where each node is aware of only its neighbors but not the entire graph. Every node has a unique, unforge- able identity. Problem: Assume that k among the n nodes are adversarial and the remaining (n-k) nodes are good nodes which follow a prescribed algorithm. For what values of k, can we get a distributed algorithm that allows two good nodes to reliably communicate?

7 The problem spectrum Reliable Communication Problem Complete GraphIncomplete Graph Unsigned MessagesSigned Messages Graph unknownGraph known

8 Example 1: BGP Nodes in the graph are AS’s Identity= AS number –AS number is a socially assigned identity –Assumption: AS number is unique and unforgable What information needs to be reliably communicated? –(AS, prefix) mapping –Valid path-vector route updates

9 Example 2: Intra-domain routing Identity of a node = Information to be reliably communicated? –Graph topology –Link costs An adversary should not be able to –Modify the cost of existing links between good nodes –Introduce new links to good nodes What an adversary can do –Introduce spurious links to other adversaries –Introduce fake nodes

10 Example 3: DNS Node identifier = –Assumption: The IP address of a DNS server of a domain is relatively static Information to be reliably communicated? –Domain ownership information –Redirection of DNS requests to the authoritative DNS Challenge: –Is it possible to secure DNS without a public- key infrastructure?

11 Our result In an unknown network comprising n nodes, given #adversaries =n on the number of nodes, two good nodes can reliably communicate if the underlying connectivity graph, G, is (2k+1) vertex connected. Complexity –Consider a network with bounded capacity where every link can transmit one message in unit time. –One-time complexity=O(kNn 3 ) –Subsequent communication complexity = O(k.diam(G))

12 Simpler adversarial model Independent adversaries –Do not collude with each other –Do not directly communicate with each other during protocol execution –Motivation: misconfigurations, independent attackers Result: In an unknown network comprising n nodes, given number of independent adversaries =n on the number of nodes, two good nodes can reliably communicate if the underlying connectivity graph, G, is (k+2) vertex connected.

13 Practical implications BGP –Reliable communication is achievable within the Internet core (tier-1 +tier-2 ISPs) –In power-law random graphs, the damage that few adversaries can cause is small –Multi-homing => better reliable communication –Mis-configurations cause lesser damage than colluding adversaries OSPF –The network can be carefully engineered to ensure that few adversaries cannot disrupt link-state routing –The cost of propagating updates reliably can be made very low

14 Practical implications (contd) DNS –By designing the DNS as a hierarchical but structured peer-peer network, adversarial nodes can cause very little damage –DNS requests can be reliably serviced in the presence of adversaries Decentralized public key distribution –In specific graphs, one can achieve decentralized public key distribution in the presence of a bounded number of adversaries

15 Other implications Network design –Need a minimum 3-connected graph to completely protect against a single adversary Failures are accommodated as adversarial nodes Not applicable for –Unstructured peer-peer networks, nodes with variable identities, extremely dynamic networks

16 Algorithm building blocks Path vector signatures Flow concept Path suppression Loop testing – for independent adversaries

17 Path vector signatures Path vector message =(m,S,P) –message m, source S, path P Path vector signature sgn(m,S,P) satisfies –Verifiability: Given (m,S,P) and sgn(m,S,P), any node can verify that message traversed P provided it originated from S –Update: sgn(m,S,P) can be updated to sgn(m,S,P’) for any path P’= P +{v} –Inability to modify: Any adversary attempting to modify m or remove entries in P cannot compute signature –Distinguishability: The signature of a fake path vector message (m,S,P) is always distinguishable from a genuine message (m,S,P)

18 El-Gamal path vector signatures A D CB YX Claimed Public-key=P Message=x Consistency checking of routes (C,B,A) and (Y,X,A): Does the signature match the public key? Do the public keys match?

19 Property of path-vector signature A single adversary attempting to modify the message or generate a fake message with a genuine signature has to generate a new public key for the source Two colluding adversaries can –tunnel an adversary and introduce a fake path between them without changing the message

20 Modified path-vector signatures <(h(ABCD),p(A)), (h(BCD), p(B)), (h(CD),p(C))> ADCB Append a string of hash signatures, one for each node along a path along with the “claimed” public-key of each node

21 Property of modified scheme Two colluding adversaries generating a fake path with additional identities have to fake the public-keys of these identities Keyed-identity of a node = (identity, claimed public key) Distinguishability of messages: –A genuine path-vector message traversing good nodes will always be distinguishable from a fake path-vector message generated by adversaries

22 Flow concept Let G be a (2k+1) connected with at most k adversarial nodes Consider two good nodes X and Y with public keys p(X) and p(Y) –Flow ((X,p(X), (Y,p(Y)) >=k+1 Consider a good node X and a fake node F created by adversaries –Flow((X,p(X)), (F,p(F)) <=k

23 Basic Algorithm Step 1: Every node X with a message m(X), transmits m(X) to its neighbors along with its path-vector signature Step 2: Every intermediary node appends the path attribute and the signature and propagates the message to other neighbors Step 3: Every receiver chooses identity-disjoint paths for each source and updates the flow Step 4: If flow(node)>k, then that message is declared genuine

24 Path suppression Number of paths in a graph is exponential Path suppression: –A node only forwards a path-vector message if the path contains a new edge or a new source. –For a given keyed identity (X,p(X)), the number of messages forwarded is bounded.

25 Loop testing: Independent adversaries X Z Independent adversaries will fail the loop test: If G is (k+2) connected, every edge will be present in at least one good loop

26 Conclusions Reliable communication in unknown networks if the graph G is (2k+1) connected with at most k adversaries –(k+2) connectivity sufficient for independent adversaries –byzantine consensus in unknown networks Practical applications –BGP, OSPF, DNS Related problem: Reliable communication in sparse unknown networks –How much damage can a single adversary cause in 1- connected and 2-connected networks? –What is the best defense mechanism in sparse networks?

Download ppt "Reliable Communication in Unknown Networks Lakshmi Subramanian Joint work with: Randy Katz, Volker Roth, Scott Shenker, Ion Stoica."

Similar presentations

Secure Routing Panel FIND PI Meeting (June 27, 2007) Morley Mao, Jen Rexford, Xiaowei Yang.

Secure Routing Panel FIND PI Meeting (June 27, 2007) Morley Mao, Jen Rexford, Xiaowei Yang.
Www.opendaylight.org Secure Network Bootstrapping Infrastructure May 15, 2014.

Secure Network Bootstrapping Infrastructure May 15, 2014.
1 Greedy Forwarding in Dynamic Scale-Free Networks Embedded in Hyperbolic Metric Spaces Dmitri Krioukov CAIDA/UCSD Joint work with F. Papadopoulos, M.

1 Greedy Forwarding in Dynamic Scale-Free Networks Embedded in Hyperbolic Metric Spaces Dmitri Krioukov CAIDA/UCSD Joint work with F. Papadopoulos, M.
Maximum Battery Life Routing to Support Ubiquitous Mobile Computing in Wireless Ad Hoc Networks By C. K. Toh.

Maximum Battery Life Routing to Support Ubiquitous Mobile Computing in Wireless Ad Hoc Networks By C. K. Toh.
IPv6 Multihoming Support in the Mobile Internet Presented by Paul Swenson CMSC 681, Fall 2007 Article by M. Bagnulo et. al. and published in the October.

IPv6 Multihoming Support in the Mobile Internet Presented by Paul Swenson CMSC 681, Fall 2007 Article by M. Bagnulo et. al. and published in the October.
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.

1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.
Prepared by Ilya Kolchinsky.  n generals, communicating through messengers  some of the generals (up to m) might be traitors  all loyal generals should.

Prepared by Ilya Kolchinsky.  n generals, communicating through messengers  some of the generals (up to m) might be traitors  all loyal generals should.
Consensus Routing: The Internet as a Distributed System 2009. 2. 26 John P. John, Ethan Katz-Bassett, Arvind Krishnamurthy, and Thomas Anderson Presented.

Consensus Routing: The Internet as a Distributed System John P. John, Ethan Katz-Bassett, Arvind Krishnamurthy, and Thomas Anderson Presented.
An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005.

An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005.
HLP: A Next Generation Interdomain Routing Protocol Lakshminarayanan Subramanian* Matthew Caesar* Cheng Tien Ee*, Mark Handley° Morley Maoª, Scott Shenker*

HLP: A Next Generation Interdomain Routing Protocol Lakshminarayanan Subramanian* Matthew Caesar* Cheng Tien Ee*, Mark Handley° Morley Maoª, Scott Shenker*
Traffic Engineering With Traditional IP Routing Protocols

Traffic Engineering With Traditional IP Routing Protocols
1 BGP Security -- Zhen Wu. 2 Schedule Tuesday –BGP Background – Detection of Invalid Routing Announcement in the Internet –Open Discussions Thursday.

1 BGP Security -- Zhen Wu. 2 Schedule Tuesday –BGP Background –" Detection of Invalid Routing Announcement in the Internet" –Open Discussions Thursday.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
Listen and Whisper: How to verify BGP route updates? Lakshmi Joint work with: Volker Roth(ICSI), Ion Stoica, Scott Shenker, Randy Katz.

Listen and Whisper: How to verify BGP route updates? Lakshmi Joint work with: Volker Roth(ICSI), Ion Stoica, Scott Shenker, Randy Katz.
Centre for Wireless Communications University of Oulu, Finland

Centre for Wireless Communications University of Oulu, Finland
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
CS335 Networking & Network Administration Tuesday, May 18, 2010.

CS335 Networking & Network Administration Tuesday, May 18, 2010.
Routing Security in Ad Hoc Networks

Routing Security in Ad Hoc Networks

Similar presentations

Ads by Google