Abstract
We propose a novel and totally decentralized strategy for private and secure data exchange in peer-to-peer systems. Our scheme is particularly appealing for point-to-point exchanges and use zero-knowledge mechanisms to preserve privacy. Furthermore, we show how to plug our private and secure data exchange module in existing publish/subscribe architectures. Our proposal enriches the original system with security and privacy making it resilient to a broad class of attacks (e.g. brute-force, eavesdroppers, man-in-the middle or malicious insiders). Additionally, the original properties of the publish/subscribe system are preserved without any degradation. A nice feature of our proposal is the reduce message cost: only one extra message is sent for every message sent in the original system. Note that our contribution is more conceptual than experimental and can be easily exploited by new emergent areas such as P2P Internet Games or Social Networks where a major trend is to achieve a secure and private communication without relying on any fixed infrastructure or centralized authority.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Aguilera, M., Strom, R., Sturman, D., Astley, M., Chandra, T.: Matching events in a content-based subscription system. In: Proceedings of the 8th ACM Symposium on Principles of Distributed Computing (PODC 1999), pp. 53–61 (1999)
Altinel, M., Franklin, M.: Efficient filtering of XML documents for selective dissemination of information. In: Proceedings of the 26th International Conference on Very Large Databases (VLDB 2000), pp. 53–64 (2000)
Anceaume, E., Datta, A.K., Gradinariu, M., Simon, G.: Publish/Subscribe Scheme for Mobile Networks. In: Proc. of the Workshop on Principles on Mobile Computing, POMC 2002 (2002)
Anceaume, E., Datta, A., Gradinariu, M., Simon, G., Virgillito, A.: A semantic overlay for self*- peer-to-peer publish subscribe. In: Proceedings of the 26th International Conference on Distributed Computing Systems, ICDCS 2006 (2006)
Anceaume, E., Friedman, R., Gradinariu, M., Roy, M.: An architecture for dynamic scalable self-managed persistent objects. In: Meersman, R., Tari, Z. (eds.) OTM 2004. LNCS, vol. 3291, pp. 1445–1462. Springer, Heidelberg (2004)
Baldoni, R., Bertier, M., Raynal, M., Piergiovanni, S.T.: Looking for a definition of dynamic distributed systems. In: Malyshkin, V.E. (ed.) PaCT 2007. LNCS, vol. 4671, pp. 1–14. Springer, Heidelberg (2007)
Baldoni, R., Doria, L., Lodi, G., Querzoni, L.: Managing reputation in contract-based distributed systems. In: Meersman, R., Dillon, T., Herrero, P. (eds.) OTM 2009. LNCS, vol. 5870, pp. 760–772. Springer, Heidelberg (2009)
Belokosztolszki, A., Eyers, D.M., Pietzuch, P.R., Bacon, J., Moody, K.: Role-based access control for publish/subscribe middleware architectures. In: DEBS 2003: Proceedings of the 2nd international workshop on Distributed event-based systems, pp. 1–8. ACM, New York (2003)
Bharambe, A., Pang, J., Seshan, S.: Colyseus: a distributed architecture for online multiplayer games. In: NSDI 2006: Proceedings of the 3rd conference on Networked Systems Design & Implementation, pp. 12–12 (2006)
Bianchi, S., Felber, P., Potop-Butucaru, M.G.: Stabilizing distributed r-trees for peer-to-peer content routing. IEEE Transactions on Parallel and Distributed Systems 99
Botev, J., Hohfeld, A., Schloss, H., Scholtes, I., Sturm, P., Esch, M.: The hyperverse - concepts for a federated and torrent-based “3d web”. Int. J. Adv. Media Commun. 2(4) (2008)
Castro, M., Druschel, P., Kermarrec, A.M., Rowston, A.: Scribe: A large-scale and decentralized application-level multicast infrastructure. IEEE Journal on Selected Areas in Communications 20(8) (October 2002)
Champel, M.L., Kermarrec, A.M., Scouarnec, N.L.: Fog: Fighting the achilles’ heel of gossip protocols with fountain codes. In: Guerraoui, R., Petit, F. (eds.) SSS 2009. LNCS, vol. 5873, pp. 180–194. Springer, Heidelberg (2009)
Chan, C.Y., Felber, P., Garofalakis, M., Rastogi, R.: Efficient filtering of XML documents with XPath expressions. VLDB Journal, Special Issue on XML 1(4), 354–379 (2002)
Chand, R., Felber, P.: Semantic peer-to-peer overlays for publish/subscribe networks. In: Cunha, J.C., Medeiros, P.D. (eds.) Euro-Par 2005. LNCS, vol. 3648, pp. 1194–1204. Springer, Heidelberg (2005)
Costa, P., Migliavacca, M., Picco, G., Cugola, G.: Epidemic algorithms for reliable content-based publish/subscribe: An evaluation. In: Proc. of the 24th International Conference on Distributed Computing Systems, ICDCS 2004 (2004)
Diao, Y., Fischer, P., Franklin, M., To, R.: YFilter: Efficient and scalable filtering of XML documents. In: Proceedings of the 18th International Conference on Data Engineering, ICDE 2002 (2002)
Dolev, S., Ostrobsky, R.: Xor-trees for efficient anonymous multicast and reception. ACM Trans. Inf. Syst. Secur. 3(2), 63–84 (2000)
Fiege, L., Zeidler, A., Buchmann, A., Darmstadt, T.: Security aspects in publish/subscribe systems. In: Third Intl. Workshop on Distributed Event-based Systems (DEBS 2004). IEEE, Los Alamitos (2004)
Goldreich, O.: Foundations of cryptography. Basic Tools, vol. 1. Cambridge University Press, Cambridge (2007)
Guerraoui, R., Huguenin, K., Kermarrec, A.M., Monod, M.: Brief announcement: Towards secured distributed polling in social networks. In: Keidar, I. (ed.) DISC 2009. LNCS, vol. 5805, pp. 241–242. Springer, Heidelberg (2009)
Gupta, A., Sahin, O., Agrawal, D., Abbadi, A.E.: Meghdoot: Content-based publish:subscribe over p2p networks. In: Jacobsen, H.-A. (ed.) Middleware 2004. LNCS, vol. 3231, pp. 254–273. Springer, Heidelberg (2004)
Keller, J., Simon, G.: Solipsis: A massively multi-participant virtual world. In: PDPTA, pp. 262–268 (2003)
Khurana, H.: Scalable security and accounting services for content-based publish/subscribe systems. In: SAC 2005: Proceedings of the 2005 ACM symposium on Applied computing, pp. 801–807. ACM, New York (2005)
Miklos, Z.: Towards an access control mechanism for wide-area publish/subscribe systems. In: Proceedings of 22nd International Conference on Distributed Computing Systems Workshops, pp. 516–521 (2002)
Opyrchal, L., Prakash, A.: Secure distribution of events in content-based publish subscribe systems. In: SSYM 2001: Proceedings of the 10th conference on USENIX Security Symposium, pp. 21–21. USENIX Association, Berkeley (2001)
Sanadhya, S.K., Sarkar, P.: New collision attacks against up to 24-step sha-2. In: Chowdhury, D.R., Rijmen, V., Das, A. (eds.) INDOCRYPT 2008. LNCS, vol. 5365, pp. 91–103. Springer, Heidelberg (2008)
Schneier, B.: Applied Cryptography: Protocols, Algorithms, and Source Code in C, 2nd edn. Wiley, Chichester (2007)
Serbu, S., Riviere, E., Felber, P.: Network-friendly gossiping. In: Guerraoui, R., Petit, F. (eds.) SSS 2009. LNCS, vol. 5873, pp. 655–669. Springer, Heidelberg (2009)
Srivatsa, M., Liu, L.: Securing publish-subscribe overlay services with eventguard. In: CCS 2005: Proceedings of the 12th ACM conference on Computer and communications security, pp. 289–298. ACM, New York (2005)
Srivatsa, M., Liu, L.: Secure event dissemination in publish-subscribe networks. In: ICDCS 2007: Proceedings of the 27th International Conference on Distributed Computing Systems, p. 22. IEEE Computer Society, Washington (2007)
Syverson, P., Reed, M., Goldschlag, D.: Onion Routing access configurations. In: Proceedings of the DARPA Information Survivability Conference and Exposition (DISCEX 2000), vol. 1, pp. 34–40 (2000)
Voulgaris, S., Rivire, E., Kermarrec, A., van Steen, M.: Sub-2-Sub: Self-organizing content-based publish subscribe for dynamic large scale collaborative networks. In: Proceedings of the 5th International Workshop on Peer-to-Peer Systems, IPTPS 2006 (2006)
Wang, C., Carzaniga, A., Evans, D., Wolf, A.: Security issues and requirements for internet-scale publish-subscribe systems. In: Proceedings of the 35th Annual Hawaii International Conference on System Sciences, HICSS 2002, pp. 3940–3947 (January 2002)
Zhuang, S.Q., Zhao, B.Y., Joseph, A.D., Katz, R., Kubiatowicz, J.: Bayeux: An architecture for scalable and fault-tolerant wide-area data dissemination. In: Proc. of the Int. Workshop on Network and OS Support for Digital Audio and Video (2001)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Bernard, S., Potop-Butucaru, M.G., Tixeuil, S. (2010). A Framework for Secure and Private P2P Publish/Subscribe. In: Dolev, S., Cobb, J., Fischer, M., Yung, M. (eds) Stabilization, Safety, and Security of Distributed Systems. SSS 2010. Lecture Notes in Computer Science, vol 6366. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16023-3_41
Download citation
DOI: https://doi.org/10.1007/978-3-642-16023-3_41
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16022-6
Online ISBN: 978-3-642-16023-3
eBook Packages: Computer ScienceComputer Science (R0)