Presentation is loading. Please wait.

Presentation is loading. Please wait.

FreeNet: A Distributed Anonymous Information Storage and Retrieval System Ian Clark, Oskar Sandberg, Brandon Wiley and Theodore Hong.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "FreeNet: A Distributed Anonymous Information Storage and Retrieval System Ian Clark, Oskar Sandberg, Brandon Wiley and Theodore Hong."— Presentation transcript:

1 FreeNet: A Distributed Anonymous Information Storage and Retrieval System Ian Clark, Oskar Sandberg, Brandon Wiley and Theodore Hong

2 FreeNet P2P network for anonymous publishing and retrieval of data –Decentralized –Nodes collaborate in storage and routing –Data centric routing –Adapts to demands –Addresses privacy & availability concerns

3 Motivation Problem - Querying the network –Source - Requestor –Destination – Provider It’s a distributed search problem –Approximating global knowledge with local knowledge –Other systems – Chord, Tapestry, Pastry Privacy and availability – Protect authorship, prevent denial attacks

4 Goals of Freenet Anonymity for producers and consumers Deniability for information storers Resistance to denial attacks Efficient storing and routing Does NOT provide –Permanent file storage –Load balancing –Anonymity for general n/w usage

5 Architecture Each node – local data store + routing table Request file through location independent keys Routing - chain of proxy requests - decision is local Graph structure actively evolves over time Request: 1.key 2.Hops to live 3.ID 4.Depth

6 Key Based Searching FILE ‘D’– key generation  Pb + Pr ; SHA(Pb) D + Pr KSK Encrypted FILE Signature E(FILE, D) Keyword signed key(KSK) Easy for retrieval – only need ‘D’ Minimal protection against tampering

7 Keys and Searching….. Problems with KSK – flat namespace (collisions), key squatting, dictionary attacks Signed Subspace Key (SSK) –Randomly generated key pair  namespace ID –SSK = SHA(‘D’) ^ SHA(Pb) –(-)Advertisement – subspace Pb + ‘D’ –(+)Owner can construct hierarchical space of arbitrary depth - using indirect files –(+)Reduces collision greatly

8 Keys and Searching… Problems with SSK - updating, versioning Content Hash Keys (CHK) –Encrypted by a random encryption key –Publish CHK + decryption key –CHK + SSK  easily updateable files 2 step process – publish file, publish pointer Results in pointers to newer version Older versions accessed thru CHK –Can be used for splitting files

9 Retrieving Files How do u locate the keys? –Hypertext spider –Indirect files – published with KSK of search words –Publish bookmarks File retrieval –Request forwarded to node in RT with closest lexicographic match for the binary key –Request routing follows steepest-ascent hill climbing: first choice  failure  backtrack  second choice

10 Still Retrieving…. Timers, hops - curtail request threads Files cached all along the retrieval path Self-reinforcing cycle – results in key expertise c a d b e f

11 Ring Topology 1000 nodes in ring topology Datastore = 50 items RT = 250 items Keys associated with links are hash of destn IPs

12 Self Reinforced Routing Snapshots using 300 requests with hops = 500 As network converges it drops to 6 - “six degrees of separation”

13 Retrieval Discussion No controlled replication  no persistence No correlation between keys and content –(+) Documents related to a subject are scattered Geographical fault resilience –(-) No spatial locality – search latencies can suffer Building indexes by other means

14 Publishing Similar to retrieval but, 2 step process –Detect collisions – ‘all clear’ if no collision –Publish to node in RT with closest key match Are CD and publish paths same? –Can result in collision during publish step Inserts allow new nodes to advertise themselves (+) Key-squatting is not effective

15 Data Management Finite data stores - nodes resort to LRU Routing table entries linger after data eviction Outdated (or unpopular) docs disappear automatically Bipartite eviction – short term policy –New files replace most recent files –Prevents established files being evicted by attacks

16 Network Growth New nodes have to know one or more guys Problem: How to consistently decide on what key the new node specializes in? –Needs to be consensus decision – else denial attacks Advertisement  IP + H(random seed s0) –Commitment - H(H(H(s0) ^ H(s1)) ^ H(s2))……. –Key for new node = XOR of all seeds Each node adds a RT entry for the new node

17 Network Growth Key assigned to new nodes = H(IP) Scales as log(n) until n ~ 40000 At 40000, RTs are full

18 Protocol Nodes with frequently changing IPs use ARKs Return address specified in requests – threat? Messages do not always terminate when hops- to-live reaches 1 Depth is initialized by original requestor to arbitrarily small value Request state maintained at each node – timers - LRU

19 Fault Resilience Median path length < 20 at 30% node failures? N/w becomes ineffective at 40% failures ???

20 Small World Most nodes form local clusters Few high link connecting nodes Power law distribution provides high degree of fault tolerance

21 Security Concerns Pre- routing – mesg. encrypted by public keys which determine path of pre-routing Protecting data source – using random and probabilistic methods

22 Security File integrity - KSK vulnerable to dictionary attacks DOS attacks – Hash Cash to slow down Attempts to displace valid files are constrained by the insert procedure

23 Conclusion Provides a n/w to anonymously store and request files Adaptive routing who’s efficiency increases with experience Deals with privacy and data integrity in various scenarios Applications? –Freedom of speech –Unaccountable, decentralized Napster

Download ppt "FreeNet: A Distributed Anonymous Information Storage and Retrieval System Ian Clark, Oskar Sandberg, Brandon Wiley and Theodore Hong."

Similar presentations

Performance in Decentralized Filesharing Networks Theodore Hong Freenet Project.

Performance in Decentralized Filesharing Networks Theodore Hong Freenet Project.
P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.

P2P data retrieval DHT (Distributed Hash Tables) Partially based on Hellerstein’s presentation at VLDB2004.
Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.

Ion Stoica, Robert Morris, David Karger, M. Frans Kaashoek, Hari Balakrishnan MIT and Berkeley presented by Daniel Figueiredo Chord: A Scalable Peer-to-peer.
Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.

Pastry Peter Druschel, Rice University Antony Rowstron, Microsoft Research UK Some slides are borrowed from the original presentation by the authors.
Scalable Content-Addressable Network Lintao Liu 2001.11.19.

Scalable Content-Addressable Network Lintao Liu
Peer-to-Peer Systems Chapter 25. What is Peer-to-Peer (P2P)? Napster? Gnutella? Most people think of P2P as music sharing.

Peer-to-Peer Systems Chapter 25. What is Peer-to-Peer (P2P)? Napster? Gnutella? Most people think of P2P as music sharing.
The Chord P2P Network Some slides have been borowed from the original presentation by the authors.

The Chord P2P Network Some slides have been borowed from the original presentation by the authors.
Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.

Chord: A scalable peer-to- peer lookup service for Internet applications Ion Stoica, Robert Morris, David Karger, M. Frans Kaashock, Hari Balakrishnan.
Denial-of-Service Resilience in Peer-to-Peer Systems D. Dumitriu, E. Knightly, A. Kuzmanovic, I. Stoica and W. Zwaenepoel Presenter: Yan Gao.

Denial-of-Service Resilience in Peer-to-Peer Systems D. Dumitriu, E. Knightly, A. Kuzmanovic, I. Stoica and W. Zwaenepoel Presenter: Yan Gao.
Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.

Common approach 1. Define space: assign random ID (160-bit) to each node and key 2. Define a metric topology in this space,  that is, the space of keys.
Freenet A Distributed Anonymous Information Storage and Retrieval System Ian Clarke Oskar Sandberg Brandon Wiley Theodore W.Hong.

Freenet A Distributed Anonymous Information Storage and Retrieval System Ian Clarke Oskar Sandberg Brandon Wiley Theodore W.Hong.
Peer to Peer File Sharing Huseyin Ozgur TAN. What is Peer-to-Peer?  Every node is designed to(but may not by user choice) provide some service that helps.

Peer to Peer File Sharing Huseyin Ozgur TAN. What is Peer-to-Peer?  Every node is designed to(but may not by user choice) provide some service that helps.
P2P: Advanced Topics Filesystems over DHTs and P2P research Vyas Sekar.

P2P: Advanced Topics Filesystems over DHTs and P2P research Vyas Sekar.
Efficient Content Location Using Interest-based Locality in Peer-to-Peer Systems Presented by: Lin Wing Kai.

Efficient Content Location Using Interest-based Locality in Peer-to-Peer Systems Presented by: Lin Wing Kai.
Www.itu.dk 1 Unstructured Routing : Gnutella and Freenet Presented By Matthew, Nicolai, Paul.

1 Unstructured Routing : Gnutella and Freenet Presented By Matthew, Nicolai, Paul.
A Scalable Content-Addressable Network Authors: S. Ratnasamy, P. Francis, M. Handley, R. Karp, S. Shenker University of California, Berkeley Presenter:

A Scalable Content-Addressable Network Authors: S. Ratnasamy, P. Francis, M. Handley, R. Karp, S. Shenker University of California, Berkeley Presenter:
Protecting Free Expression Online with Freenet Presented by Ho Tsz Kin I. Clarke, T. W. Hong, S. G. Miller, O. Sandberg, and B. Wiley 14/08/2003.

Protecting Free Expression Online with Freenet Presented by Ho Tsz Kin I. Clarke, T. W. Hong, S. G. Miller, O. Sandberg, and B. Wiley 14/08/2003.
Gnutella, Freenet and Peer to Peer Networks By Norman Eng Steven Hnatko George Papadopoulos.

Gnutella, Freenet and Peer to Peer Networks By Norman Eng Steven Hnatko George Papadopoulos.
Object Naming & Content based Object Search 2/3/2003.

Object Naming & Content based Object Search 2/3/2003.
Chord-over-Chord Overlay Sudhindra Rao Ph.D Qualifier Exam Department of ECECS.

Chord-over-Chord Overlay Sudhindra Rao Ph.D Qualifier Exam Department of ECECS.

Similar presentations

Ads by Google