Attempting to provide a framework for the development of secure peer-to-peer (P2P) applications, Intel Wednesday made an open-source library available for free download to companies that are developing P2P systems.
Intel's Peer-to-Peer Trusted Library is designed to allow software developers to add elements of security to their P2P applications. It provides support for digital certificates, peer authentication, secure storage, public key encryption, digital signatures and symmetric key encryption.
"Security is one of the primary issues that the whole P2P thing will have to address," said Bob Knighten, Intel P2P evangelist, at the company's Peer-to-Peer Working Group meeting. "Most companies [developing P2P applications] have thought about security, but they all do it differently."
Intel officials said the Peer-to-Peer Trusted Library project is an attempt to spur innovation in P2P security by providing the basis for open-source development projects.
The Peer-to-Peer Trusted Library is built upon the Open SSL (secure sockets layer) Tool Kit, officials said. The Open SSL provides low-level certificate support. The Peer-to-Peer Trusted Library makes Open SSL easy to use and more flexible, according to Intel officials.
The P2P trusted library is available for download at sourceforge.net/projects/ptptl.
"Getting P2P into the hands of end users is the effort. People can build from this [library] secure P2P clients to avoid some of the security problems encountered in P2P," Knighten said.