EAGER: Secure Peer-to-peer Data Management

EAGER：安全的点对点数据管理

• 批准号: 0959096
• 负责人: Kevin Hamlen
• 金额: $ 8万
• 依托单位: University of Texas at Dallas
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2009
• 资助国家: 美国
• 起止时间: 2009-09-15 至 2011-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0959096&HistoricalAwards=false
• 关键词: EAGER; Secure; Peer; peer; Data

Peer-to-peer (P2P) networks have increased in popularity partly because they can be implemented atop a diverse collection of hardware and software, making them relatively inexpensive to deploy and maintain. The network infrastructure also tends to be highly fault-tolerant, and bandwidth and other computational resources tend to be well balanced across peers, making the network highly robust. In practice, many P2P networks remain vulnerable to denial of service attacks because the homogeneity of the network results in greater interdependence among hosts. Many existing P2P networks also suffer from serious data integrity vulnerabilities because it is easy for peers in the network to lie to other peers about the data they serve. The confidentiality desired by P2P users typically comes in two forms: Data confidentiality policies prohibit the leaking of high confidentiality, shared objects to low-privileged peers, while user anonymity policies prohibit the divulging of a user?s private information. Trusted data management is a key layer in providing environments for trusted collaboration. The team will use their secure P2P infrastructure with low level security enforcement mechanisms as a basis for developing a reputation-based trust management system to enforce discretionary access control. They will provide a comprehensive solution for the design and development of secure data management hosted on a peer to peer network, focused on query processing in such an environment with considerations for confidentiality, integrity, and trust.

对等（P2P）网络越来越受欢迎，部分原因是它们可以在各种硬件和软件集合上实现，使其部署和维护相对便宜。网络基础设施也倾向于高度容错，并且带宽和其他计算资源倾向于在对等体之间很好地平衡，使得网络高度鲁棒。 在实践中，许多P2P网络仍然容易受到拒绝服务攻击，因为网络的同质性导致主机之间更大的相互依赖性。 许多现有的P2P网络也遭受严重的数据完整性漏洞，因为网络中的节点很容易就其服务的数据向其他节点撒谎。 P2P用户所需的机密性通常有两种形式：数据机密性政策禁止泄漏高机密性，共享对象到低特权的对等体，而用户匿名政策禁止泄露用户？s私人信息。 可信数据管理是提供可信协作环境的关键层。 该团队将使用其安全的P2P基础设施和低级别的安全执行机制，作为开发基于声誉的信任管理系统的基础，以执行自主访问控制。 它们将为对等网络上托管的安全数据管理的设计和开发提供全面的解决方案，重点是在这样的环境中进行查询处理，并考虑机密性，完整性和信任。