Abstract
With the advent of large-scale, wide-area networking testbeds, researchers can deploy long-running services that interact with other resources on the Web. While such interaction can easily attract clients and traffic, our experience suggests that projects accepting outside input and interacting with outside resources must carefully consider the avenues for abuse of such services. The CoDeeN Content Distribution Network, deployed on PlanetLab, uses a network of caching Web proxy servers to intelligently distribute and cache requests from a potentially large client population. Due to CoDeeN's non-commerical nature, content is not pushed/advertised by content providers, but instead is pulled by clients who have configured their browsers to use CoDeeN.In effect, CoDeeN is one of the largest "open" proxy networks in the world, and therefore draws unwanted attention from malicious users. This paper discusses our experiences with undersirable traffic on CoDeeN, the mechanisms we developed to curtail it, and the future directions for such work. We believe that this work provides a safe alternative to open proxies and will encourage others to deploy similar systems. Some of the security mechanisms we are developing are suitable for ISPs to deploy on their own networks to detect misbehaving customers before problems arise. Finally, other research projects that allow "open" access to Web resources may face similar situations, and may be able to adopt similar mechanisms.
Publisher
Association for Computing Machinery (ACM)
Subject
Computer Networks and Communications,Software
Reference13 articles.
1. Akamai. Content Delivery Network. http://www.akamai.com. Akamai. Content Delivery Network. http://www.akamai.com.
2. BOPM. Blitzed Open Proxy Monitor. http://www.blitzed.org/bopm/. BOPM. Blitzed Open Proxy Monitor. http://www.blitzed.org/bopm/.
3. JANET Web Cache Service. http://wwwcache.ja.net. JANET Web Cache Service. http://wwwcache.ja.net.
4. Web caching with consistent hashing
Cited by
16 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Analysis and prediction of web proxies misbehavior;Proceedings of the 17th International Conference on Availability, Reliability and Security;2022-08-23
2. Shining a light on dark places: A comprehensive analysis of open proxy ecosystem;Computer Networks;2022-05
3. Everybody Loves Roundabouts;Paths;2020-08-19
4. On Using Application-Layer Middlebox Protocols for Peeking Behind NAT Gateways;Proceedings 2020 Network and Distributed System Security Symposium;2020
5. An Extensive Evaluation of the Internet's Open Proxies;Proceedings of the 34th Annual Computer Security Applications Conference;2018-12-03