Do P2P networks share the same risks as traditional ones?

BROWSE BY TAG Network Security,   Network Security: Tools, Products, Software,   Network Firewalls, Routers and Switches,   Enterprise Network Security,   Network Device Management,   Information Security Laws, Investigations and Ethics,   Information Security Management,   VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network Security How to set up a split-tunnel VPN in Windows Vista What is the difference between static and dynamic network validation? Port scan attack prevention best practices Securing the intranet with remote access VPN security How to prevent network sniffing and eavesdropping How to implement virtual firewalls in a complex network infrastructure How to manage network bandwidth with distributed ISP bandwidth How to edit group policy objects to give a user local admin rights How to prevent operating system cloning with AES 256-bit encryption How to securely connect a LAN POS to a remote point-of-sale device Network Firewalls, Routers and Switches How to prepare for a secure network hardware upgrade Best Network Firewall Products What is the difference between static and dynamic network validation? Screencast: Smoothwall offers firewall defense in lean times New Cisco IOS bugs pose tempting targets, says Black Hat researcher How to implement virtual firewalls in a complex network infrastructure How to manage network bandwidth with distributed ISP bandwidth Firewall rule management best practices Should enterprises be running multiple firewalls? What are the disadvantages of proxy-based firewalls? Network Device Management How to prepare for a secure network hardware upgrade Researchers find thousands of flawed embedded devices Is there a way to block iPhone widgets that bypass Web filters? Will an application usage policy best control network bandwidth? What is the difference between static and dynamic network validation? How to manage network bandwidth with distributed ISP bandwidth DNSSEC deployments gain momentum since Kaminsky DNS bug Firewall rule management best practices What are best practices for fiber optic cable security? The requirements for being a PCI DSS-compliant service provider

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary bastion host  (SearchSecurity.com) firewall  (SearchSecurity.com) Firewall Builder  (SearchSecurity.com) screened subnet  (SearchSecurity.com) virus  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

First, let's set the stage by explaining the basics of peer-to-peer networks. When computing resources are organized on a peer-to-peer network, a traditional server is not involved. Instead, each node, or "peer," in the network acts as both a client and a server, offering resources to others while taking advantage of the resources made available by the additional nodes.

This technology shows promise and could revolutionize the way that computers communicate. Over the past several years, however, peer-to-peer networking has taken a PR hit, as it has been used to illegally share music files and violate copyright laws, drawing the wrath of the music publishing industry, especially the Recording Industry Association of America (RIAA). Music sharing aside though, there are still plenty of legal applications of P2P technology, including collaborative file sharing and computational resource pooling.

P2P networks share the same risks as traditional ones, but there are also additional dangers. Under the traditional networking model, security professionals have been able to build highly fortified servers, which can then be used to block all inbound access to clients. Unfortunately, this model doesn't work for P2P networks, as every client must also act as a server.

If you choose to leverage P2P applications in your organization, you'll need to ensure that each node is carefully protected. First, your P2P software must provide adequate isolation between shared and private resources; you wouldn't want an anonymous remote client to be able to manipulate operating system settings through the P2P interface. Second, you'll need to carefully craft firewall rules that permit the desired P2P activity while blocking unwanted traffic.

P2P networking offers great promise for the future of computing, but it brings with it a number of possible risks. As with any new technology, security professionals must be able to adapt to a changing environment.

More information: