strive_blog_logo

How to securely deliver P2P live streams

Data integrity and security is an issue around the world and is getting much more complicated over time. Old technologies have to be updated gradually, but steadily while new ones have to be bullet-proof when launched. Even Life-Streaming is not safe per se. Stream-Hijacking is the risk you face as a provider – but we’re here to help!
admin
November 13, 2017

Stay In The Loop!

Share Now On Your Social Network!

LinkedIn
Twitter
Facebook
WhatsApp
Reddit

How to securely deliver P2P live streams

Data integrity and security is an issue around the world and is getting much more complicated over time. Old technologies have to be updated gradually, but steadily while new ones have to be bullet-proof when launched. Even Life-Streaming is not safe per se. Stream-Hijacking is the risk you face as a provider – but we’re here to help!
Secure P2P live stream delivery

P2P Stream Hijacking

Learn about how to securely stream a P2P live stream without the danger of peers manipulating your video content.

How to securely deliver P2P live streams

Modern live streaming technologies like HLS or MPEG-DASH are mostly based on HTTP.
This means, existing infrastructures like CDNs or web caches can easily be utilized to optimize the delivery. For security reasons, HTTP is getting replaced by HTTPS, so most live streams are already secured against most man-in-the-middle attacks.

Differences between HTTP and HTTPS:

  • HTTP sends data over port 80 while HTTPS uses port 443.
  • HTTP operates at application layer, while HTTPS operates at transport layer.
  • No SSL certificates are required for HTTP, with HTTPS it is required that you have an SSL certificate and it is signed by a CA.
  • HTTP doesn’t require domain validation, where as HTTPS requires at least domain validation and certain certificates even require legal document validation.
  • No encryption in HTTP, with HTTPS the data is encrypted before sending.

However, live streaming in general is a growing market and it is actually growing faster than CDNs and the internet infrastructure. Therefore, long buffering times and multiple stream crashes are usual for high interest streams like sports or gaming. We at Strive believe that the solution for this problem is based on WebRTC (P2P) to distribute the load evenly among all viewers.

But there is a catch, what happens, if the viewers, who are supposed to send video chunks to each other, are not trustworthy? You could say, that this is a corner case, but actually it is not!

 

We call this problem Stream-Hijacking, which means that an attacker could turn a P2P-optimized live stream into anything he wants. Basically, P2P/WebRTC-based live streaming optimizations disable HTTPS, which is a big deal.

 

Stream-Hijacking 
noun | plural: Stream-Hijackings
An act of illegaly changing streaming content by compromising the origin server.

The solution is to employ a new trust system within the delivery process to keep the guarantees promised by HTTPS. At first, SHA or MD5 hashes seem fine in order to prove data integrity, since they are very hard to break. But this can easily introduce a lot of overhead, since every viewer has to know the hash of any chunk. This might sum up in total and becomes very fast inefficient.

We at Strive solved this issue very uniquely by using digital signatures.
This way, each viewer only has to know its own chunk and signature and is free to forward both to other viewers. Now, if a viewer receives a chunk and signature from another viewer, it can easily check and verify data integrity. We used this technique in our innovative product StriveCDN TrafficBoost, which is first on the market solving Stream-Hijacking once and for all.

 

newsletter_icon

Subscribe To Our Newsletter!

Read about our latest stories, news and updates! We publish new content every week so make sure to get notified about interesting information on WebRTC, OTT broadcasting and next-generation video delivery technology!

Recent Updates

Read about our latest stories, news and updates!

Blog Header Image

P2P Live Streaming With StriveCDN Flink

Key Questions While OTT continues to be one the strongest growing segments in the broadcasting industry, there are still some open issues. This article gives…
blog_banner

The Next Generation Of P2P Video Delivery

OTT as Television of the future Over the last couple of years, a dramatic change of paradigm has shaken the TV and broadcasting industry. The…
All articles loaded
No more articles to load

Ready To Learn More?

Check out all our content sections.

News, press releases and product updates here at StriveCDN

How-To’s, Tutorials, Reviews and Explanations of today’s streaming technology and WebRTC applications

Awesome news and articles about live streaming, encoding, content delivery and P2P technology