ITU-T X 1162-2008 Security architecture and operations for peer-to-peer networks (Study Group 17)《对等网络的安全结构和操作 17号研究组》.pdf

1、 International Telecommunication Union ITU-T X.1162TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (05/2008) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Telecommunication security Security architecture and operations for peer-to-peer networks Recommendation ITU-T X.1162 ITU-T X-

2、SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS Services and facilities X.1X.19 Interfaces X.20X.49 Transmission, signalling and switching X.50X.89 Network aspects X.90X.149 Maintenance X.150X.179 Administrative arrangements X.180X.199 OPEN SYSTEMS

3、INTERCONNECTION Model and notation X.200X.209 Service definitions X.210X.219 Connection-mode protocol specifications X.220X.229 Connectionless-mode protocol specifications X.230X.239 PICS proformas X.240X.259 Protocol Identification X.260X.269 Security Protocols X.270X.279 Layer Managed Objects X.28

4、0X.289 Conformance testing X.290X.299 INTERWORKING BETWEEN NETWORKS General X.300X.349 Satellite data transmission systems X.350X.369 IP-based networks X.370X.379 MESSAGE HANDLING SYSTEMS X.400X.499DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS Networking X.600X.629 Efficiency X.630X.639 Qua

5、lity of service X.640X.649 Naming, Addressing and Registration X.650X.679 Abstract Syntax Notation One (ASN.1) X.680X.699 OSI MANAGEMENT Systems Management framework and architecture X.700X.709 Management Communication Service and Protocol X.710X.719 Structure of Management Information X.720X.729 Ma

6、nagement functions and ODMA functions X.730X.799 SECURITY X.800X.849 OSI APPLICATIONS Commitment, Concurrency and Recovery X.850X.859 Transaction processing X.860X.879 Remote operations X.880X.889 Generic applications of ASN.1 X.890X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 TELECOMMUNICATION SECUR

7、ITY X.1000 For further details, please refer to the list of ITU-T Recommendations. Rec. ITU-T X.1162 (05/2008) i Recommendation ITU-T X.1162 Security architecture and operations for peer-to-peer networks Summary Recommendation ITU-T X.1162 describes a general security-related architectural model whi

8、ch can be applied in various peer-to-peer (P2P) networks. Based on the architectural model, this Recommendation identifies primitive operations for generic P2P networks. Non-generic and application-dependent operations are not described in this Recommendation. For each primitive operation, the relat

9、ionship between the security requirements and operations is described. In addition, the relationship between the security functions and operations is described. Source Recommendation ITU-T X.1162 was approved on 29 May 2008 by ITU-T Study Group 17 (2005-2008) under Recommendation ITU-T A.8 procedure

10、. ii Rec. ITU-T X.1162 (05/2008) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of I

11、TU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics

12、for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepare

13、d on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may c

14、ontain certain mandatory provisions (to ensure e.g. interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to expres

15、s requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTS ITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Proper

16、ty Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of i

17、ntellectual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2008 All

18、 rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. Rec. ITU-T X.1162 (05/2008) iii CONTENTS Page 1 Scope 1 2 References. 1 3 Definitions 1 3.1 Terms defined elsewhere 1 3.2 Terms defined in this Recommendation. 2 4 A

19、bbreviations and acronyms 2 5 Conventions 3 6 Conceptual architecture of overlay network. 3 7 Security architecture of the peer-to-peer network 4 7.1 Peer-to-peer architectural reference model 4 7.2 Relationship between the P2P overlay stratum and transportation stratum . 5 8 Primitive operations of

20、 the peer-to-peer network. 6 8.1 Join . 6 8.2 Leave 6 8.3 Search . 6 8.4 Chat. 6 8.5 Routing . 6 8.6 Insertion and Retrieval . 7 8.7 Update and Delete 7 8.8 Multicasting 7 8.9 Relationship between security requirements and operations 7 8.10 Relationship between security functions and operations 12 A

21、nnex A Structures of peer-to-peer networks 13 A.1 Centralized peer-to-peer networks . 13 A.2 Pure (distributed) peer-to-peer networks 14 A.3 Hybrid peer-to-peer networks. 14 A.4 DHT (distributed hash table)-based peer-to-peer networks b-ES05 14 Bibliography. 15 Rec. ITU-T X.1162 (05/2008) 1 Recommen

22、dation ITU-T X.1162 Security architecture and operations for peer-to-peer networks 1 Scope This Recommendation describes a general and common security-related architectural model and operations that can be applied to various peer-to-peer (P2P) networks, and only covers the generic security issues th

23、at are common to most P2P networks. The security issues are described on the basis of the operations. The complete set of security requirements is defined in ITU-T X.1161. According to the requirements, the peer-to-peer architectural reference model and primitive operations are proposed. For each pr

24、imitive operation, the relations among the security requirements, security functions, and operations are described for the development guidelines. 2 References The following ITU-T Recommendations and other references contain provisions which, through reference in this text, constitute provisions of

25、this Recommendation. At the time of publication, the editions indicated were valid. All Recommendations and other references are subject to revision; users of this Recommendation are therefore encouraged to investigate the possibility of applying the most recent edition of the Recommendations and ot

26、her references listed below. A list of the currently valid ITU-T Recommendations is regularly published. The reference to a document within this Recommendation does not give it, as a stand-alone document, the status of a Recommendation. ITU-T X.1161 Recommendation ITU-T X.1161 (2008), Framework for

27、secure peer-to-peer communications. 3 Definitions 3.1 Terms defined elsewhere This Recommendation uses the following terms defined elsewhere: 3.1.1 access control b-ITU-T X.800: The prevention of unauthorized use of a resource, including the prevention of use of a resource in an unauthorized manner.

28、 3.1.2 authentication b-ITU-T X.800: See data origin authentication defined in clause 3.1.8, and peer entity authentication defined in clause 3.1.12. 3.1.3 authorization b-ITU-T X.800: The granting of rights, which includes the granting of access based on access rights. 3.1.4 availability b-ITU-T X.

29、800: The property of being accessible and useable upon demand by an authorized entity. 3.1.5 confidentiality b-ITU-T X.800: The property that information is not made available or disclosed to unauthorized individuals, entities, or processes. 3.1.6 cryptography b-ITU-T X.800: The discipline which emb

30、odies principles, means, and methods for the transformation of data in order to hide its information content, prevent its undetected modification and/or prevent its unauthorized use. 3.1.7 data integrity b-ITU-T X.800: The property that data has not been altered or destroyed in an unauthorized manne

31、r. 3.1.8 data origin authentication b-ITU-T X.800: The corroboration that the source of data received is as claimed. 2 Rec. ITU-T X.1162 (05/2008) 3.1.9 integrity b-ITU-T X.800: See data integrity. 3.1.10 key b-ITU-T X.800: A sequence of symbols that controls the operations of encipherment and decip

32、herment. 3.1.11 key management b-ITU-T X.800: The generation, storage, distribution, deletion, archiving and application of keys in accordance with a security policy 3.1.12 peer entity authentication b-ITU-T X.800: The corroboration that a peer entity in an association is the one claimed. 3.1.13 pri

33、vacy b-ITU-T X.800: The right of individuals to control or influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed. 3.1.14 peer ITU-T X.1161: Communication node on P2P network that functions simultaneously as both “client“ and

34、“server“ to the other nodes on the network. 3.1.15 repudiation b-ITU-T X.800: Denial by one of the entities involved in a communication of having participated in all or part of the communication. 3.2 Terms defined in this Recommendation This Recommendation defines the following terms: 3.2.1 overlay

35、network: An overlay network is a virtual network that runs on top of another network. Like any other network, the overlay network comprises a set of nodes and links between them. Because the links are logical ones, they may correspond to many physical links of the underlying network. 3.2.2 peer user

36、: A peer user is one who uses a computer system to access the P2P network. A peer user in a P2P network is similar to a user in the Internet, with slight differences. Specifically, peer users in the P2P network have a different operational context including personal interests, resource plans, securi

37、ty considerations, etc. 3.2.3 security domain administrator: A security domain administrator is a party with the authority to manage a specific P2P network. An administrative body may have a security policy and the appropriate enforcement mechanism to ensure the security of the P2P network under its

38、 management. Such policy and enforcement mechanism are completely application-dependent. 3.2.4 super-peer: A super-peer is a node in a P2P network to help routing and connectivity of nodes distributed in the Internet. The super-peer is less powerful than ordinary servers, but it is strong enough (in

39、 terms of, for example, computing power and storage) to act as a server of route resolution and connection request. 4 Abbreviations and acronyms This Recommendation uses the following abbreviations and acronyms: DHT Distributed Hash Table DoS Denial of Service HTTP HyperText Transfer Protocol HTTPS

40、Hypertext Transfer Protocol over Secure Socket Layer ID Identifier P2P Peer-to-Peer QoS Quality of Service Rec. ITU-T X.1162 (05/2008) 3 TCP Transmission Control Protocol TLS Transport Layer Security 5 Conventions None. 6 Conceptual architecture of overlay network While addressing, routing, and QoS

41、management are main issues of the overlay network, this Recommendation focuses on the security of a specific type of overlay network, namely a “peer-to-peer (P2P)“ network. The P2P network is an overlay network on top of the Telecommunication and Internet. The P2P network exploits diverse connectivi

42、ty between nodes and the rich set of resources (e.g., computing power and storage) available at each node rather than conventional centralized resources to provide a service that is not available in the Internet. With the rapid advancement of the Telecommunication Internet and computing technology,

43、much more aggregate information and computing resources are available from distributed nodes than from a limited number of centralized servers. Overlay networks have the following characteristics: 1) Overlay networks allow both networking developers and application users to design and implement thei

44、r own communication environment and protocols on top of the Telecommunication and Internet, e.g., data routing and file sharing management. 2) Data routing in overlay networks can be very flexible, quickly detecting and avoiding network congestions by adaptively selecting paths based on different me

45、trics, such as probed latency. 3) The end-nodes in overlay networks are closely connected to each other due to flexible routing. As long as the physical network connections exist, one end-node can always communicate to another end-node via overlay networks. Thus, scalability and robustness in overla

46、y networks are two attractive features. 4) The high connectivity of end-nodes to join overlay networks enables the effective sharing of a huge amount of information and resources available in the Internet. 5) Since overlay networks are open to all kinds of Internet users, the security and privacy is

47、sues can be quite serious. 6) Overlay networks are highly decentralized; hence the possibly weak ability for resource coordination. 4 Rec. ITU-T X.1162 (05/2008) Figure 1 Conceptual architecture of the overlay network b-ES05 As a kind of overlay networks, P2P (peer-to-peer) networks are typically us

48、ed for connecting nodes via ad hoc connections. Such networks are useful for many purposes. Sharing data files containing audio, video, text, or anything in digital format is very common; real-time data, such as telephony traffic, also exploits P2P technology. 7 Security architecture of the peer-to-

49、peer network 7.1 Peer-to-peer architectural reference model Figure 2 shows the physical and logical P2P network architecture. In the physical P2P network, a user can join the P2P services through a device. Generally the term “peer“ is used to represent a user or a device owned by the user. The connection types between the entities in a P2P network can be categorized into three cases as follows: 1) connection with an intra-domain peer (this is eventually separated into two cases: one is between a peer and a servic