Peer-to-peer: Shared property security pay

By Mark Mayne on Feb 28, 2007 2:27 PM
Filed under Applications

P2P is here to stay, so shore up your defences and embrace the technology's potential for a distributed architecture.

Peer-to-peer (P2P) technology has come a long way since the early days of Napster, and even the combined might of the recording and film industries has proved powerless to stop its rapid growth.

Research from the music industry's anti-piracy arm, the IFPI, shows that 11 per cent of UK internet users frequently engaged in file-sharing in 2004 and continued to do so in 2006, undeterred by the fact that 10,000 legal actions across 18 countries against large-scale P2P uploaders were launched last year alone.

However, it's not just those trying to sell CDs and DVDs that are affected by file-sharing. Businesses face several threats from client-side P2P technologies. Downloads of the original client software can be contaminated by spyware and Trojans, which are then unwittingly executed on a user's PC behind the corporate firewall. Once the application is uploading and downloading files, the content of the received files can be dangerous.

Malicious-code writers frequently use social engineering to ensure their files - which may be designed to open a backdoor into the users network - are in demand. Unless carefully configured, some popular filesharing software allows other peers to search the network as standard. Much of the content will infringe privacy laws, and all this activity can soak up an almost infinite amount of corporate bandwidth.

Another, if indirect, danger to enterprise is encryption cracking using distributed computing techniques - thousands of PCs linked together in a P2P network. For example, the 56-bit DES encryption algorithm was broken by brute force in less than 24 hours by a distributed network that was able to test 245 billion keys per second. At the time, DES was the strongest encryption algorithm the US government allowed for export.

The latest versions of BitTorrent, which has 135 million users worldwide, and emule, as well as eBay-owned VoIP and instant messaging/file transfer application Skype, use encryption to secure their traffic. "Encrypted traffic can be very worrying for IT managers," Bo Dines Larsen, technical director for Europe at internet traffic management solutions provider Allot Communications, points out.

You must be a registered member to access this content.
Please Sign in below or Register now.
NOTE: This Feature is more than 7 days old.
Please login to view the rest of this article

Registered users may log in here.

Login or Register now and get unlimited access.


Why sign up?
  • Unlimited access to SC Magazine content as well as access to to our global resources from SC Magazine US and UK editions.
  • Full use of over 11,000 articles database covering breaking news, video interviews, case studies, research, product reviews and exclusive features with fast and intuitive filtering of results.
  • Personalised "Recommended for you" filters to ensure you have the most relevant content at your finger tips.
  • Daily security bulletin direct to your inbox covering the latest security news from Australia/NZ and around the world.

Register now, its free! We'll never sell your details to third parties and it helps SC Magazine to keep serving you quality stories.
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read