Kademlia协议的安全问题及可行扩展
Security Issues and Practical Extensions of Kademlia Protocol
Kademlia是最流行、应用最为广泛的结构化对等网络协议(Structured Peer-to-Peer Protocol),它具有很多其他协议所不具备的优秀特性。然而,Kademlia依然易受对等覆盖网上的常见攻击(如“Sybil攻击”),虽然它所具备的一些微妙特性可以减轻某些攻击的危害。本文讨论了Kademlia协议所面临的安全性问题,并针对这些问题提出了三条可行的安全扩展机制:可验证的节点ID生成方式、可验证的路由表更新以及安全的消息转发。
Kademlia is the most popular deployed structured peer-to-peer protocol, which has a number of desirable advantages that other previous protocols do not offer. However, Kademlia is also vulnerable to the common attacks on the peer-to-peer overlay, although it has some subtle properties that can mitigate the harmfulness of certain attacks. In this paper, we discuss security issues of Kademlia and present some practical extensions of the protocol: a verifiable way of generating node IDs, verifiable routing table updating, and secure message forwarding.
张浩、田园
计算技术、计算机技术
Kademlia对等网络分布式散列表网络安全公钥密码
KademliaPeer-to-Peer Networksistributed Hash TableNetwork SecurityPublic Key Cryptography
张浩,田园.Kademlia协议的安全问题及可行扩展[EB/OL].(2009-09-14)[2025-08-24].http://www.paper.edu.cn/releasepaper/content/200909-371.点此复制
评论