TY - GEN
T1 - Exploiting P2P systems for DDoS attacks
AU - Naoumov, Naoum
AU - Ross, Keith
PY - 2006
Y1 - 2006
N2 - When a P2P system has millions of concurrently active peers, there is the risk that it could serve as a DDoS engine for attacks against a targeted host. In this paper we describe two approaches to creating a DDoS engine out of a P2P system: the first involves poisoning the distributed index in the peers; the second involves poisoning the routing tables in the peers. For both approaches, the targeted host does not have to be a participant in the P2P system, and could be a web server, a mail server, or a user's desktop. We then examine these two poisoning attacks in Overnet, a popular DHT-based P2P file-sharing system. By using limited poisoning attacks of short duration on Overnet's indexing and routing tables, we create DDoS attacks against a targeted host. We find that with modest effort, both DDoS attacks can direct significant traffic from diverse peers to the target.
AB - When a P2P system has millions of concurrently active peers, there is the risk that it could serve as a DDoS engine for attacks against a targeted host. In this paper we describe two approaches to creating a DDoS engine out of a P2P system: the first involves poisoning the distributed index in the peers; the second involves poisoning the routing tables in the peers. For both approaches, the targeted host does not have to be a participant in the P2P system, and could be a web server, a mail server, or a user's desktop. We then examine these two poisoning attacks in Overnet, a popular DHT-based P2P file-sharing system. By using limited poisoning attacks of short duration on Overnet's indexing and routing tables, we create DDoS attacks against a targeted host. We find that with modest effort, both DDoS attacks can direct significant traffic from diverse peers to the target.
UR - http://www.scopus.com/inward/record.url?scp=34547343505&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=34547343505&partnerID=8YFLogxK
U2 - 10.1145/1146847.1146894
DO - 10.1145/1146847.1146894
M3 - Conference contribution
AN - SCOPUS:34547343505
SN - 1595934286
SN - 9781595934284
T3 - ACM International Conference Proceeding Series
BT - Proceedings of the 1st International Conference on Scalable Information Systems, InfoScale '06
T2 - 1st International Conference on Scalable Information Systems, InfoScale '06
Y2 - 30 May 2006 through 1 June 2006
ER -