Measurement and Diagnosis of Address Misconfigured P2P Traffic
Source: Northwestern University
Misconfigured P2P traffic caused by bugs in volunteer-developed P2P software or by attackers is prevalent. It influences both end users and ISPs. In this paper, the authors discover and study address-misconfigured P2P traffic, a major class of such misconfiguration. P2P address misconfiguration is a phenomenon in which a large number of peers send P2P file downloading requests to a "Random" target on the Internet. On measuring three Honeynet datasets spanning four years and across five different /8 networks, the authors find address-misconfigured P2P traffic on average contributes 38.9% of Internet background radiation, increasing by more than 100% every year.