|Article: Electronic||Free Download|
P2P-based file replication is a proven approach to providing
cooperative robust backup for data: If one peer does not have a specific
datum, another one might. Given enough peers participating, the overall
system survives isolated failures.
Applying this approach to distributed File Integrity Checking (or similar
security-sensitive areas) implies that current and untampered
file fingerprint information has to be distributed
among the peers in such a way that a limited number of malicious peers
cannot subvert or sabotage the overall system.
As a proof-of-concept, such a system has been implemented in Perl using POE
as asynchronous platform. Authentication and message integrity layers were
implemented using a Perl interface to GnuPG.
This talk presents at first the goals and concepts underlying the
overall system. It then outlines some deployment scenarios and further
areas of opportunity for such a system.
The second part of the talk focuses on development experiences
and implementation issues, specifically those concerning POE and various
Perl Crypto packages.
|Keywords:||Perl, Security, P2P, Unix|
Article: Electronic (PDF File; 429.021KB). Published by The Open Source Developers' Conference Papers.