Security Analysis of the Micro Transport Protocol with a Misbehaving Receiver

2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery Pub Date : 2012-10-10 DOI:10.1109/CyberC.2012.31

Florian Adamsky, S. A. Khayam, Rudolf Jäger, M. Rajarajan

{"title":"Security Analysis of the Micro Transport Protocol with a Misbehaving Receiver","authors":"Florian Adamsky, S. A. Khayam, Rudolf Jäger, M. Rajarajan","doi":"10.1109/CyberC.2012.31","DOIUrl":null,"url":null,"abstract":"BitTorrent is the most widely used Peer-to-Peer (P2P) protocol and it comprises the largest share of traffic in Europe. To make BitTorrent more Internet Service Provider (ISP) friendly, BitTorrent Inc. invented the Micro Transport Protocol (uTP). It is based on UDP with a novel congestion control called Low Extra Delay Background Transport (LEDBAT). This protocol assumes that the receiver always gives correct feedback, since otherwise this deteriorates throughput or yields to corrupted data. We show through experimental investigation that a misbehaving uTP receiver, which is not interested in data integrity, can increase the bandwidth of the sender by up to five times. This can cause a congestion collapse and steal large share of a victim's bandwidth. We present three attacks, which increase the bandwidth usage significantly. We have tested these attacks in a real world environment and show its severity both in terms of number of packets and total traffic generated. We also present a countermeasure for protecting against the attacks and evaluate the performance of that defence strategy.","PeriodicalId":416468,"journal":{"name":"2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CyberC.2012.31","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

BitTorrent is the most widely used Peer-to-Peer (P2P) protocol and it comprises the largest share of traffic in Europe. To make BitTorrent more Internet Service Provider (ISP) friendly, BitTorrent Inc. invented the Micro Transport Protocol (uTP). It is based on UDP with a novel congestion control called Low Extra Delay Background Transport (LEDBAT). This protocol assumes that the receiver always gives correct feedback, since otherwise this deteriorates throughput or yields to corrupted data. We show through experimental investigation that a misbehaving uTP receiver, which is not interested in data integrity, can increase the bandwidth of the sender by up to five times. This can cause a congestion collapse and steal large share of a victim's bandwidth. We present three attacks, which increase the bandwidth usage significantly. We have tested these attacks in a real world environment and show its severity both in terms of number of packets and total traffic generated. We also present a countermeasure for protecting against the attacks and evaluate the performance of that defence strategy.

查看原文本刊更多论文

接收端行为不端的微传输协议安全性分析

BitTorrent是使用最广泛的点对点(P2P)协议，它占欧洲流量的最大份额。为了使BitTorrent对互联网服务提供商(ISP)更加友好，BitTorrent公司发明了微传输协议(uTP)。它基于UDP，具有一种称为低额外延迟背景传输(LEDBAT)的新颖拥塞控制。该协议假定接收方总是给出正确的反馈，否则会降低吞吐量或产生损坏的数据。我们通过实验研究表明，一个对数据完整性不感兴趣的行为不端的uTP接收方可以将发送方的带宽增加多达五倍。这可能会导致拥塞崩溃，并窃取受害者的大部分带宽。我们提出了三种显著增加带宽使用的攻击。我们已经在真实环境中测试了这些攻击，并从生成的数据包数量和总流量两方面显示了其严重性。我们还提出了防御攻击的对策，并评估了该防御策略的性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery

自引率

0.00%

发文量