P2P systems are exposed to an unusually broad range of attacks. These include a spectrum of denial-of-service, or attrition, attacks from low-level packet flooding to high-level abuse of the peer communication protocol. We identify a set of defenses that systems can deploy against such attacks and potential synergies among them. We illustrate the application of these defenses in the context of the LOCKSS digital preservation system.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	M. Abadi, M. Burrows, M. Manasse, and T. Wobber. Moderately Hard, Memory-bound Functions. In Proceedings of the 10th Annual Network and Distributed System Security Symposium, San Diego, CA, USA, Feb. 2003. Internet Society.
	2	A. Back. Hashcash - a denial of service counter measure, Aug 2002. http://www.hashcash.org/hashcash.pdf.
	3	D. J. Bernstein. Syn cookies. http://cr.yp.to/syncookies.html, 1996.
	4	Miguel Castro , Peter Druschel , Ayalvadi Ganesh , Antony Rowstron , Dan S. Wallach, Secure routing for structured peer-to-peer overlay networks, Proceedings of the 5th symposium on Operating systems design and implementation Due to copyright restrictions we are not able to make the PDFs for this conference available for downloading , December 09-11, 2002, Boston, Massachusetts  [doi>10.1145/1060289.1060317]
	5	Miguel Castro , Barbara Liskov, Practical Byzantine fault tolerance, Proceedings of the third symposium on Operating systems design and implementation, p.173-186, February 1999, New Orleans, Louisiana, United States
	6	Ludmila Cherkasova , Peter Phaal, Session-Based Admission Control: A Mechanism for Peak Load Management of Commercial Web Sites, IEEE Transactions on Computers, v.51 n.6, p.669-685, June 2002  [doi>10.1109/TC.2002.1009151 ]
	7	Computer Emergency Response Team. CERT Advisory CA-1996-21 TCP SYN Flooding Attacks. http://www.cert.org/advisories/CA-1996-21.html, Sept 1996.
	8	Landon P. Cox , Brian D. Noble, Samsara: honor among thieves in peer-to-peer storage, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
	9	S. Crosby and D. S. Wallach. Denial of Service via Algorithmic Complexity Attacks. In 12th USENIX Security Symposium, 2003.
	10	Neil Daswani , Hector Garcia-Molina, Query-flood DoS attacks in gnutella, Proceedings of the 9th ACM conference on Computer and communications security, November 18-22, 2002, Washington, DC, USA  [doi>10.1145/586110.586136]
	11	John R. Douceur, The Sybil Attack, Revised Papers from the First International Workshop on Peer-to-Peer Systems, p.251-260, March 07-08, 2002
	12	C. Dwork, A. Goldberg, and M. Naor. On Memory-Bound Functions for Fighting Spam. In 23rd Annual International Cryptology Conference, Santa Barbara, CA, USA, Aug. 2003.
	13	Cynthia Dwork , Moni Naor, Pricing via Processing or Combatting Junk Mail, Proceedings of the 12th Annual International Cryptology Conference on Advances in Cryptology, p.139-147, August 16-20, 1992
	14	Michal Feldman , Kevin Lai , Ion Stoica , John Chuang, Robust incentive techniques for peer-to-peer networks, Proceedings of the 5th ACM conference on Electronic commerce, May 17-20, 2004, New York, NY, USA  [doi>10.1145/988772.988788]
	15	Sally Floyd , Van Jacobson, The synchronization of periodic routing messages, IEEE/ACM Transactions on Networking (TON), v.2 n.2, p.122-136, April 1994  [doi>10.1109/90.298431]
	16	T. Giuli, P. Maniatis, M. Baker, D. S. H. Rosenthal, and M. Roussopoulos. Resisting Attrition Attacks on a Peer-to-Peer System. Technical Report arXiv:cs.CR/0405111, Computer Science Department, Stanford University, Stanford, CA, USA, May 2004.
	17	Philippe Golle , Ilya Mironov, Uncheatable Distributed Computations, Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA, p.425-440, April 08-12, 2001
	18	David Kempe , Jon Kleinberg , Éva Tardos, Maximizing the spread of influence through a social network, Proceedings of the ninth ACM SIGKDD international conference on Knowledge discovery and data mining, August 24-27, 2003, Washington, D.C.  [doi>10.1145/956750.956769]
	19	Angelos D. Keromytis , Vishal Misra , Dan Rubenstein, SOS: secure overlay services, Proceedings of the 2002 conference on Applications, technologies, architectures, and protocols for computer communications, August 19-23, 2002, Pittsburgh, Pennsylvania, USA
	20	Petros Maniatis , David S. H. Rosenthal , Mema Roussopoulos , Mary Baker , TJ Giuli , Yanto Muliadi, Preserving peer replicas by rate-limited sampled voting, Proceedings of the nineteenth ACM symposium on Operating systems principles, October 19-22, 2003, Bolton Landing, NY, USA
	21	N. Michalakis, D.-M. Chiu, and D. S. H. Rosenthal. Long Term Data Resilience Using Opinion Polls. In 22nd IEEE International Performance Computing and Communications Conference, Phoenix, AZ, USA, Apr. 2003.
	22	Roger M. Needham, Denial of service, Proceedings of the 1st ACM conference on Computer and communications security, p.151-153, November 03-05, 1993, Fairfax, Virginia, United States  [doi>10.1145/168588.168607]
	23	S. Rhea, D. Geels, T. Roscoe, and J. Kubiatowicz. Handling Churn in a DHT. In Proceedings of the Usenix Annual Technical Conference, Boston, MA, USA, June 2004.
	24	D. S. H. Rosenthal and V. Reich. Permanent Web Publishing. In Proceedings of the USENIX Annual Technical Conference, Freenix Track, pages 129--140, San Diego, CA, USA, June 2000.
	25	Antony I. T. Rowstron , Peter Druschel, Pastry: Scalable, Decentralized Object Location, and Routing for Large-Scale Peer-to-Peer Systems, Proceedings of the IFIP/ACM International Conference on Distributed Systems Platforms Heidelberg, p.329-350, November 12-16, 2001
	26	Stefan Saroiu , Krishna P. Gummadi , Richard J. Dunn , Steven D. Gribble , Henry M. Levy, An analysis of internet content delivery systems, Proceedings of the 5th symposium on Operating systems design and implementation Due to copyright restrictions we are not able to make the PDFs for this conference available for downloading , December 09-11, 2002, Boston, Massachusetts  [doi>10.1145/1060289.1060319]
	27	A. Somayaji and S. Forrest. Automated Response Using System-Call Delays. In Proceedings of the 9th Usenix Security Symposium, Aug. 2000.
	28	Spam Arrest, LLC. Take Control of your Inbox. http://spamarrest.com.
	29	D. Wallach. A Survey of Peer-to-Peer Security Issues. In International Symposium on Software Security, 2002.
	30	Matthew M. Williamson, Throttling Viruses: Restricting propagation to defeat malicious mobile code, Proceedings of the 18th Annual Computer Security Applications Conference, p.61, December 09-13, 2002
	31	Dong Xuan , Sriram Chellappan , Xun Wang , Shengquan Wang, Analyzing the Secure Overlay Services Architecture under Intelligent DDoS Attacks, Proceedings of the 24th International Conference on Distributed Computing Systems (ICDCS'04), p.408-417, March 24-26, 2004
	32	Aydan R. Yumerefendi , Jeffrey S. Chase, Trust but verify: accountability for network services, Proceedings of the 11th workshop on ACM SIGOPS European workshop: beyond the PC, p.37-es, September 19-22, 2004, Leuven, Belgium  [doi>10.1145/1133572.1133585]