Peer-to-peer: what and who?

List of summaries

General papers

• Define P2P

• Clay Shirky.What is P2P... And What Isn't? The O'Reilly Network, 24 Nov 2000
• Andy Oram. Peer-To-Peer Makes Internet Interesting Again. The O'Reilly Netwok, 22 Sep 2000
• Richard Koman. The Great Rewiring. The O'Reilly Network, 20 Aug 2001

• Survey papers

• D. S. Milojicic et al. Peer-to-Peer Computing. Internal HP report, 2002

Systems

• JXTA
  • Li Gong. Project JXTA: A Technology Overview
  • JXTA FAQ
  • Rael Dornfest. JXTA takes its position.The O'Reilly Network, 25 Apr 2001
  • Project JXTA: Protocol Specification V1.0

• .NET and Hailstorm
• Clay Shirky. Hailstorm: Open Web Services Controlled by Microsoft. The O'Reilly Network, 30 May 2001.
• Building User-centric experiences. An Introduction to .NET My Services. Microsoft White Paper, 2001.

• OceanStore and Tapestry
• J. Kubiatowicz et al. OceanStore: An Architecture for Global-Scale Persistent Storage, ASPLOS, November 2000.
• S. Rhea et al. Maintainance-Free Global Data Storage, September 2001, IEEE Internet Computing.
• B. Y. Zhao A Descentralized Location and Routing Infrastructure for Fault-tolerant Wide-area Network Applications , April 2001, PhD Qualifying examination proposal.
• K. Hildrum, J. D. Kubiatowicz, S. Rao and B. Y. Zhao Distributed Object Location in a Dynamic Network , SPAA 2002

P2P Conferences

• IPTPS 2004
• IPTPS 2003
• IPTPS 2002

What is P2P... And What Isn't ?

Clay Shirky

Available at: http://www.openp2p.com/pub/a/p2p/2000/11/24/shirky1-whatisp2p.html

What has changed with Internet?

The nodes of these P2P systems are -- Internet-connected PCs, which had been formerly relegated to being nothing but clients -- and where these nodes are -- at the edges of the Internet, cut off from the DNS system because they have no fixed IP address.
 
What is P2P?
 
• P2P is a class of applications that takes advantage of resources -- storage, cycles, content, human presence -- available at the edges of the Internet.
• Because accessing these decentralized resources means operating in an environment of unstable connectivity and unpredictable IP addresses, P2P nodes must operate outside the DNS system and have significant or total autonomy from central servers.

How to know if a system is P2P?
 
1. Does it treat variable connectivity and temporary network addresses as the norm?
2. Does it give the nodes at the edges of the network significant autonomy?

 
If the answer to both of those questions is yes, the application is P2P. If the answer to either question is no, it's not P2P.

Who's who?
 

• Napster is P2P, because the addresses of Napster nodes bypass the DNS system, and because once the Napster server resolves the IP addresses of the PCs hosting a particular song, it shifts control of the file transfers to the nodes. Furthermore, the ability of the Napster nodes to host the songs without central intervention lets Napster users get access to several terabytes of storage and bandwidth at no additional cost.
• ICQ and Jabber are P2P, because not only do they devolve connection management to the individual nodes once they resolve the addresses, they violate the machine-centric worldview encoded in the DNS system. Your address has nothing to do with the DNS systems, or even with a particular machine, except temporarily -- your chat address travels with you. Furthermore, by mapping "presence" -- whether you are at your computer at any given moment in time -- chat turns the old idea of permanent connectivity and IP addresses on its head. Chat is an important protocol because of the transience of the connectivity.
• E-mail, which treats variable connectivity as the norm, is nevertheless not P2P, because your address is not machine independent. If you drop AOL in favor of another ISP, your AOL e-mail address disappears as well, because it hangs off DNS.

Peer-To-Peer Makes Internet Interesting Again

Andy Oram

Available at: http://www.openp2p.com/pub/a/linux/2000/09/22/p2psummit.html

The paper summarizes the conclusions of the first peer-to-peer summit organized by O'Reilly.

The message

Peer-to-peer is fundamental to the architecture of the Internet.
Peer-to-peer is the end of the read-only Web.
Peer-to-peer allows you to participate in the Internet again.
Peer-to-peer: steering the Internet away from TV.

P2P limitations

• Peer-to-peer is probably not appropriate when it's important for everybody to know all the current data at the same time.
• Peer-to-peer systems seem to contain an inherent fuzziness. Gnutella, for instance, doesn't promise you'll find a file that's hosted on its system. It relies on the notion of  a "horizon" beyond which you don't know what is available. The host for a particular resource may be there one minute and gone the next.
• Peer-to-peer seems to reward large communities.
• Peer-to-peer is good if you have a strong idea what you're looking for (an author, for instance) but have no idea where it is. A centralized system like Yahoo! is better if you have only a vague idea what you're looking for, but possess some confidence that you can find it at a particular site.
• Data is easy to find if it's easy to categorize. Metadata, once again, proves key to the future of peer-to-peer.

 

Barriers to peer-to-peer

• Domain Name System is a barrier to end-to-end addressing.
• Systems that use proprietary systems of addressing can't interoperate.
• Regulation: early peer-to-peer systems happen to be associated with violations of intellectual property.

Barriers to entry

Things that currently make it hard for users to start a peer-to-peer service need to be attacked by the
peer-to-peer developers themselves. Among these:

• Services may require the user to download, install, and configure a new program.
• Users are forced to learn a system of metadata and apply a lot of tags.
• Prospective users may have to upload material before doing any downloads.

The Great Rewiring

Richard Koman

Available at: http://www.openp2p.com/pub/a/p2p/2001/08/20/shirky.html

Features of P2P

• Client-server is an attitude about transactions, not about machines. A machine can as easily be a client in one second and a server in the next, or indeed a client and a server at the same time.
• A shift from machine-centrism to content-centrism, or service-centrism, or people-centrism. What the peer-to-peer world has shown us is that all kinds of things can have addresses. And that when you point to Napster, of course you're going to end up with a content-centered model. But when you point to ICQ, you're getting a people-centric model. And if you're going to start ending up in a world where Web services are offered over, say, Jabber, you're going to end up with a service-centric model and so forth
• The legacy that is going to fundamentally change the landscape: address spaces no longer have to be tied to machines, but they don't have to be tied to content either. It may be content or people or any resource that can be named or addressed.
• Massive redundancy of inexepensive and unreliability versus high reliability with very rare machines. P2P adopts the first strategy. Idea: good content propagates in the system and bad content falls out.

Peer-to-Peer Computing

D. S. Milojicic, V. Kalogeraki, R. Lukose, K. Nagaraja, J. Pruyne, B. Richard, S. Rollins, Z. Xu

Available at: http://glis.hpl.hp.com/techpubs/2002/HPL-2002-57.html

The paper makes a detailed survey of today's existing P2P systems. It compares the goals, functionalities and design and concludes about the benefits of peer-to-peer computing compared to alternative distributed systems.

Project JXTA: A Technology Overview

Li Gong, Sun Microsystems

Available at: http://www.jxta.org/project/www/white_papers.html

JXTA FAQ

Available at: http://www.jxta.org/project/www/docs/DomainFAQ.html

JXTA Takes Its Position

Available at: http://www.openp2p.com/pub/a/p2p/2001/04/25/jxta_position.html

Quick presentation of JXTA and a comparison to .NET and Hailstorm.

Project JXTA: Protocol Specification V1.0

Available at: http://www.jxta.org/project/www/white_papers.html

Building User-Centric Experiences

An Introduction to .NET My Services

White Paper

Available at:  http://www.microsoft.com/myservices/services/userexperiences.asp

Features (Microsoft's view)

As part of the Microsoft .NET initiative, Microsoft is introducing a user-centric architecture and set of XML Web services, Microsoft .NET My Services (formerly codenamed "HailStorm"). .NET My Services will make it easier to integrate the silos of information that exist today. .NET My Services is oriented around people, instead of around a specific device, application, service, or network. It puts users in control of their own data and information, protecting personal information and providing a new level of ease of use and personalization. .NET My Services takes advantage of the Microsoft .NET-based technologies and architecture that make it possible for applications, devices, and services to work together. These services make user consent the basis for who can access user information, what they can do with it, and how long they have permission.

 
Example

With .NET My Services, booking a flight using an online travel reservation service becomes much                        simpler because with the user's consent, the travel service automatically access the user's preferences and payment. If you're traveling on business and your company has travel policies you need to adhere to, your individual affiliation with your company's .NET My Services group identity will make it possible for the travel service to automatically show you only the choices that meet both your preferences and your                       company's requirements. Once you've chosen your flight, the travel service can use .NET My Services, with your explicit permission, to figure out which calendaring service you use and automatically schedule the itinerary onto your calendar, automatically updating that itinerary and notifying you if your flight will be late. And  through .NET My Services, you can share that live flight itinerary with whomever  you're going to visit so that they will also know when and where to expect you. The information in your Microsoft .NET Calendar can then be accessed through your PC, someone else's PC, a smart phone, a PDA, or any other smart connected device.
 

Architecture

                              .NET Profile. Name, nickname, special dates, picture, address.
                              .NET Contacts. Electronic relationships/address book.
                              .NET Locations. Electronic and geographical location and rendezvous.
                              .NET Alerts. Alert subscription, management, and routing.
                              .NET Presence. Online, offline, busy, free, which device(s) to send alerts to.
                              .NET Inbox. Inbox items like e-mail and voice mail, including existing mail
                              systems.
                              .NET Calendar. Time and task management.
                              .NET Documents. Raw document storage.
                              .NET ApplicationSettings. Application settings.
                              .NET FavoriteWebSites. Favorite URLs and other Web identifiers.
                              .NET Wallet. Receipts, payment instruments, coupons, and other transaction
                              records.
                              .NET Devices. Device settings, capabilities.
                              .NET services. Services provided for an identity.
                              .NET Lists. General purpose lists.
                              .NET Categories. A way to group lists.

Hailstorm: Open Web Services Controlled by Microsoft

Clay Shirky

Available at: http://www.openp2p.com/lpt/a//p2p/2001/05/30/hailstorm.html

Features

• HailStorm, which launched in March [2001] with a public announcement and a white paper, is Microsoft's bid to put some meat on the bones of its .NET initiative. It is a set of Web services whose data is contained in a set of XML documents, and which is accessed from the various clients (or "HailStorm endpoints") via SOAP (Simple Object Access Protocol). No Microsoft runtime or tool is required to call them Hailstorm services.
• Concurrent to Sun's JXTA.
• An attempt to re-visit the original MS-DOS strategy: Microsoft writes and owns the basic framework, and third-party developers write applications to run on top of that framework.
• While decentralizing client-code, Microsoft centralizes the three core aspects of the service:
• Identity (using Passport)
• Security (using Kerberos)
• Definitions and Descriptions (using HailStorm's globally standardized schema)

Philosophy

Truly ubiquitous software will have to run on non-MS devices. The world has shifted from "software as product" to "software as service," where software can be accessed remotely and paid for in per-use or per-time-period licenses. HailStorm asks both developers and users to pay for access to HailStorm, though the nature and size of these fees are far from worked out.

Authentication-Centric

In a distributed model, it is the user and not the hardware that needs to be validated, so user authentication becomes the core attribute -- not "Is this software licensed to run on this machine?" but "Is this software licensed to run for this user?"

HailStorm is thus authentication-centric, and is organized around Passport. HailStorm is designed to create a common set of services which can be accessed globally by authenticated users, and to this end it provides common definitions for:

• Identity (using Microsoft Passport)
• Security (using Kerberos MS)
• Definitions and Descriptions (using Hailstorm's globally standardized schema)

Descentralization

• They have made accessing HailStorm services on non-Microsoft clients a core part of the proposition.
• Open access model: all services are XML, SOAP.

HailStorm offers a way for Microsoft to sell software and services on devices that aren't using Microsoft operating systems.

Centralization

Because they have decentralized their support of the client, they must necessarily make large parts of HailStorm open, but always with a caveat: while HailStorm is open for developers to use, it is not open for developers to build on or revise. Microsoft calls this an "Open Access" model -- you can access it freely, but not alter it freely.

Any changes made to HailStorm must be approved by Microsoft, a procedure they call "Open Process Extensibility".

With HailStorm, Microsoft is shifting from a strategy of controlling software to controlling transactions.

Passport:

• An Internet user without a Passport will not exist within the system, and will not be able to access or use Passport services.
• Because users pay to participate in the HailStorm system, in practice this means that Microsoft will control a user's identity, leasing it to them for use within HailStorm for a recurring fee.
• It's not clear how open the Passport system will be. It appears that all issuing and validation of Passports will be centralized under Microsoft's control.

Security:

• Authentication of a HailStorm user is provided via Kerberos, a secure method developed at MIT for authenticating a request for a service in a computer network.
•  It is not clear if interoperability with the Microsoft version of Kerberos is required to participate in HailStorm.

Definitions and descriptions:

• Microsoft wants to create a schema which describes all possible user transactions, and then copyright that schema, in order to create and manage the ontology of life on the Internet.
• All entities, methods, and transactions will be defined and mediated by Microsoft.

Comments

By adopting open standards such as XML and SOAP, Microsoft hopes to attract the world's application developers to write for the HailStorm system now or soon, and by owning the authentication and schema of the system, they hope to be the mediator of all HailStorm users and transactions, or the licenser of all members of the HailStorm federation.

Drawbacks:

1. Using HailStorm requires a Microsoft-hosted identity.
2. You cannot use a non-Microsoft copyrighted schema to broker transactions within HailStorm.
3. Developers might not be able to write HailStorm services or clients without using the Microsoft-extended version of Kerberos.

Hailstorm will not be launching in any real way until 2002.

OceanStore: An Architecture for Global-Scale Persistent Storage

John Kubiatowicz, David Bindel, Yan Chen, Steven Czerwinski, Patrick Eaton, Dennis Geels, Ramakrishna Gummadi, Sean Rhea, Hakim Weatherspoon, Westley Weimer, Chris Wells, and Ben Yabin Zhao.

November 2000

Available at:  http://oceanstore.cs.berkeley.edu/publications/papers/pdf/asplos00.pdf

Features

OceanStore is an infrastructure designed to span the globe and provide continuous access to persistent information.

Two goals:

• Support an untrusted infrastructure: servers may crash without warning or leak information. So all data must be encrypted.

Support nomadic data: data can be cached anywhere, anytime (promiscuous caching).

Overview

• The fundamental unit in OceanStore is the persistent object, named using a globally unique identifier.
• Objects are replicated on multiple servers. A replica is located through one of two mechanisms: a fast probabilistic algorithm and a slower deterministic algorithm, used in case the first one fails.
• Objects are modified through updates. Each update creates a new version of the object. Consistency is thus based on versioning. Objects exist in active forms (latest version) and in archival, read-only forms.Archival forms are encoded with an erasure code and spread over hundreds or thousands of objects. Data can be reconstructed from any sufficiently large subset of fragments, so it is protected against localized damages (deep archival storage).

Applications

• Groupware and personal information management tools (calendars, email, contact lists, distributed design tools.
• Large digital libraries and repositories for massive quantities of scientific data.

Architecture details

• Access control. OceanStore provides two primitive types of access control: reader and writer.All non-public data is encrypted and the encryption key is distribued to all users with read permission. All writes are required to be signed. So reads are restricted at clients via key distribution and writes are restricted at servers by servers ignoring unauthorized updates.
• Data location and routing. Routing is two-phase: messages labeled with a destination ID are routed from node to node until a destination is discovered and then they are routed to destination. It uses first a fast probabilistic algorithm, based on Plaxton's scheme: each node is assigned a unique node ID, used to build a mesh of neighbor links, labeled with the stage of routing on the link. Links are used to route from anywhere to a given node by solving the node ID one link at a time: first a level one link, then a level two link, etc. Each object is mapped to a single node (object's root) whose ID is closest to the object ID starting with the least significant bits. When a replica is placed somewhere, its location is published to the routing infrastructure and deposits a pointer at each hop on the way to the object's root. When looking for an object, the search is rooted to the root and re-directed to a replica location as soon as a pointer is found.
• Fault tolerance. Replicas are distribued using a primary set of replicas managed using Byzantine agreement protocol allowing less then a thirs of the total number of replicas to be unavailable and a secondary set updated by the primary set. Secondary replicas do not participate to the consistency protocol, can be more numerous and are organized in a multicast tree. Updates are pushed from primary replicas to secondary replicas.
• Deep archival storage. Data is divided into i fragments transformed into a larger number of fragments (e.g. 2n) using erasure encoding. Any n fragments are enough to rebuild the data. The fragments are spread while avoiding to place all fragments to locations high high correlated probability of failure.
• Introspection. OceanStore uses a mechanism to observe, analyze and optimize the system behavior. This is used for cluster recognition (identify and group closely related files based on access history, in order to collocate and prefetch the files) and replica management (ajust the number and location of replicas according to the access patterns).

Implementation

• The system is written in Java. It will communicate with applications via the UNIX file system interface in addition to its existing API. A prototype is under way.

Maintainance-Free Global Data Storage

Sean Rhea, Chris Wells, Patrick Eaton, Dennis Geels, Ben Zhao, Hakim Weatherspoon, and John Kubiatowicz

Available at: http://oceanstore.cs.berkeley.edu/publications/papers/pdf/ieeeic.pdf

The paper describes the mechanisms for storage-level management in OceanStore (i.e. the set of operations required to maintain data integrity and access performance without reference to the data semantics).

• The objects and associated fragments are named using a secure hash function of the contents. The fragments are thus read-only and self-verifying.
• When reconstructing an object, the system must locate enough object fragments. This relies on Tapestry, a routing and location layer that mapps IDs to nodes.
• The system provides a fault-tolerant mapping from an object ID to the ID of the most recent read-only copy. This is accomplished by an inner ring, a set of servers working for the object. Clients locate servers in the inner ring using Tapestry. The inner ring servers are kept consistent through a Byzantine agreement protocol. They are in charge of verifying the legitimate writers and maintain the object's update history. They behave like a fault-tolerant home node.
• Tapestry provides object location and node-to-node communication under failure conditions while transparently handling node insertion/removal.
• Fault tolerance

  Routing. Tapestry uses redundant neighbor pointers when detecting primary route failure while routing. Several root nodes exist for a given object, to provide redundancy. Queries are sent to each root in parallel.

  Data. Objects are divided into blocks and blocks are erasure-encoded and redundantly distributed over the network.

  Update commitment. The update protocol uses a modified Byzantine agreement protocol, tolerating the failure of less than third of the inner ring nodes.Updates are transmitted by the inner ring nodes to secondary nodes.

   

• Automatic repair.

  Routing. A node can disapper, in which case its neigbors detect its absence and update routing tables accordingly. Alternatively, a node can use back pointers to indicate it will disapear and notify object servers for which it stores location information or nodes which rely on it for routing.

  Data. Server can periodically verify the integrity of the fragments it stores and restore fragments in case an error is found. Also, when the redundancy level for an object has dropped below a critical level, new fragments can be created.

  Update commitment. Under Byzantine aswsumption, the inner ring nodes can be replaced dynamically without affecting the system functionality.

Several clients are under construction, including an NTFS file system and an HTML gateway.

A Descentralized Location and Routing Infrastructure for Fault-tolerant Wide-area Network Applications

B. Y. Zhao.

April 2001

PhD Qualifying examination proposal, available at:  http://www.cs.berkeley.edu/%7Eravenben/tapestry/Tapestry_quals.pdf

The paper gives an overview of Tapestry, OceanStore's routing layer. It justifies the main design decions, especially with respect to the use of redundancy for fault tolerance (storage AND routing), but also for performance stability. The paper introduces Tapestry's API and some metrics used to evaluate the system. It also presents some preliminary evaluation figures for a prototype and a comparison with respect to other concurrent systems, like Chord, CAN and Pastry.

Distributed Object Location in a Dynamic Network

K. Hildrum, J. D. Kubiatowicz, S. Rao and B. Y. Zhao.

SPAA 2002

Available at:  http://www.cs.berkeley.edu/~ravenben/publications/pdf/SPAA02.pdf

The paper presents the algorithms used by Tapestry, OceanStore's routing layer. Algorithm properties are presented together with proofs. This is a theoretical paper.

Goals

The main interesting property targeted and achieved by Tapestry is that objects which exist in the system should be located. This is never guaranteed by other P2P systems.

Tapestry's primary goal is to provide "location-independent routing", i.e. the ability to route queries to object names in a changing environment, where objects can move. Two properties are targeted.

• Routing locality: routes should have a low strech (strech = ratio between the distance traveled by a query to the minimal possible distance), not just a small application-level hops.
• Rapid adaptation to node arrival/departure.

Details

Tapestry uses as a starting point the "PRR"scheme, a distributed data structure with good properties of routing locality and storage load balance. Tapestry extends this approach:

• It deals with a changing set of nodes: nodes may come and disappear without affecting the routing functionality. The objects stay available.
• It provides fault tolerance with respect to node failures through multiple roots and redundant neighbor pointers. Failure handling is transparent to the user.

Both PRR and Tapestry garantee that they perform location-independent routing: if a query is sent to an object, the query is first sent to the roots and then are re-directed to the objects as soon as a pointer is encountered. The algorithm guaranteed that such a pointer is always encountered if the existing redundancy allows a route to be found from the qurying node to the route and from an encountered pointer to the corresponding publishing server.

Routing is achieved via a prefixed-based, nearest-neighbor scheme in a logical routing mesh, by solving one digit at a time.

Last modified:  2 September 2002 by Gabriel Antoniu