censored planet observatory
play

Censored Planet Observatory Measuring Internet censorship globally, - PowerPoint PPT Presentation

May 16, 2023 •114 likes •644 views

Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely Internet Measurement Village 2020 Ram Sundara Raman June 26, 2020 Measuring Censorship is a Complex Problem! Internet censorship practices are

  1. Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely Internet Measurement Village 2020 Ram Sundara Raman June 26, 2020

  2. Measuring Censorship is a Complex Problem! Internet censorship practices are diverse in their methods, targets, timing, differing by regions (even within countries or networks), as well as across time. 2

  3. Direct Censorship Measurement Client Ask people on the ground, or deploy ● software or hardware in censored region ? (e.g. OONI probe, FreedomHouse) Use VPNs, or research networks (e.g. ● PlanetLab, ICLab) Server 3

  4. Challenges with Direct Measurements Scale Coverage Continuity Takes tremendous effort to Hard to obtain access Hard to continuously and recruit a large number of points that cover a majority repetitively run measurements volunteers or access points of networks in the country using volunteers Synchronization Ethics New updates and censorship Risky to run censorship measurement techniques measurements unless the must be pushed, and proper precautions are taken detection may be delayed 4

  5. IPv4 hosts - Internet infrastructure is everywhere 5

  6. Remote Censorship Client Measurements ? Can we detect whether pairs of hosts around the world can talk to each other without controlling either endpoint? Measurement Machine Server 6

  7. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Challenge: Design methods to detect interference remotely at all network layers, without end-user participation. 7

  8. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Satellite and Iris (https://www.censoredplanet.org/projects/satellite) 8

  9. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Spooky Scan and Augur (https://www.censoredplanet.org/projects/augur) 9

  10. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Quack and Hyperquack (https://www.censoredplanet.org/projects/quack) (https://www.censoredplanet.org/projects/hyperquack) 10

  11. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 11

  12. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 12

  13. DNS Manipulation DNS query for https://censoredplanet.org Client 200.31.1.49 216.239.34.21 DNS Resolver 13

  14. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS Machine Resolver Satellite & Iris 14

  15. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS D Machine Resolver N S q u c e e r n y s o f o r r e d p l a n e Satellite & Iris t . o r g C 3 o n t r o l I P 4 Control Resolvers 15

  16. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS D Machine Resolver N S q u c e e r n y s o f o r r e d p l a n e Satellite & Iris t . o r g C 3 o 5 n t r o l I P 4 Compare: - Test IP vs Control IP Control - HTTP content hashes Resolvers - TLS certificates - ASN and AS Name etc. 16

  17. Satellite Scale, Coverage and Ethics More than 8.2 million OpenDNS resolvers in 232 countries ● To reduce risk, we want to choose infrastructural resolvers ● We use resolvers with a valid PTR record beginning with the subdomain ● ns[0-9]* or nameserver[0-9]* → Likely to be part of big organizations 30k resolvers in ~4,500 ASes in 175 countries ● Stable DNS resolvers allow us to repetitively run measurements over time ● 17

  18. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 18

  19. Application-layer keyword blocking TCP Handshake GET https:// censoredplanet .org RST RST User Server 19

  20. TCP Handshake GET https:// ooni .org GET https:// ooni .org Measurement T C P E c h o Machine Quack S e r v e r An Echo service simply sends back to the originating source any data it receives. 20

  21. TCP Handshake GET https:// censoredplanet .org GET https:// censoredplanet .org Measurement T C P E c h o Machine Inject Inject Quack S e r v e r 33,000 usable Echo Servers in ~2,800 ASes in 166 countries 21

  22. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack 22

  23. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack 23

  24. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://ooni.org 24

  25. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://censoredplanet.org 25

  26. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://torproject.org 26

  27. Measurement Web Server TCP Handshake Machine template of server Build Canonical GET http:// example{1,2,3} .com Hyperquack HTTP reply response (e.g., Status Code: 302 Found) 27

  28. Measurement Web Server TCP Handshake Machine template of server Build Canonical GET http:// example{1,2,3} .com Hyperquack HTTP reply response (e.g., Status Code: 302 Found) GET http:// censoredplanet .org different from Response Inject Canonical Template : Censorship 28

  29. Hyperquack Scale, Coverage and Ethics More than 50 million web servers (all around the world) ● To reduce risk, we want to choose infrastructural vantage points ● Use web servers that produce a valid EV certificate, as they are more likely ● to be organizational After filtering for capacity, we regularly use 30k web servers in ~3,800 ASes ● in 191 countries 29

  30. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 30

  31. Satellite & Iris Quack & Hyperquack Spooky Scan & Augur 31

  32. The Censored Planet Observatory uses Censored Planet remote measurement tools to scalably, Observatory ethically and continuously measure different kinds of global Internet censorship 32

  33. Censored Planet Observatory Launched in August 2018 and running continuously since ● Continuous baseline of reachability data for 2000 sensitive domains ● and IP addresses (From Alexa and Citizen Lab) each week More than 95,000 vantage points in 221 countries and territories ● (updated every week) Rapid focus capabilities to analyze censorship events in detail ● 33

  34. 25 billion Measurements over 22 Months 221 countries 42%-360% increase compared to OONI, ICLab 8 ASes (median) /country Median increase of 4-7 ASes per country 34

  35. Vantage Points in March 2020 (Scale 1 - 29,617) 35

  36. Number of vantage points Vantage Points over time 36

  37. Identifying Network Censorship Devices Censored Planet data identified the deployments of many network censorship devices Publication - Measuring the Deployment of Network Censorship Filters at Global Scale; R. Sundara Raman, A. Stoll, J. Dalek, R. Ramesh, W. Scott, and R. Ensafi; Network and Distributed System Security Symposium (NDSS), 2020 37

  38. Investigating Russia’s Censorship Model Censored Planet helped investigate large-scale ISP specific blocking of online resources in Russia’s authoritative blocklist . Publication - Decentralized Control: A Case Study of Russia; R. Ramesh, R. Sundara Raman, M. Bernhard, V. Ongkowikaya, L. Evdokimov, A. Edmundson, S. Sprecher, M. Ikram, and R. Ensafi; Network and Distributed System Security Symposium (NDSS), 2020 38

  39. Complementing Direct Measurements Censored Planet can complement in-depth direct measurements by providing higher scale. Censored Planet data confirmed OONI’s observation about the blocking of abortion rights websites. Report - https://ooni.org/post/2019-blocking-abortion-right s-websites-women-on-waves-web/ 39

  40. Censored Planet’s Rapid Focus Kazakhstan’s HTTPS interception https://censoredplanet.org/kazakhstan 40

  41. Kazakhstan’s National TLS Interception July 17, 2019 : Government ● started intercepting large fraction of HTTPS traffjc within its borders. Local ISPs told to instruct users ● to install a government-issued certificate on all devices and in every browser. 41

  42. How the interception works 42

Recommend

30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 , Michael Endl 3 ,

30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 , Michael Endl 3 ,

Twenty years of giant exoplanets - Proceedings of the Haute Provence Observatory Colloquium, 5-9 October 2015 Edited by I. Boisse, O. Demangeon, F. Bouchy & L. Arnold 30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 ,

78 views • 5 slides
Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018

Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018

Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018 1 Measuring Internet Censorship Globally PROBLEM: - How can we detect whether pairs of hosts around the world can talk to each other? user ?

780 views • 49 slides
own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial

own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial

Trio Sci Cymru Design your own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial object to be classified as a planet 1. It must orbit a star. 2. It must have enough mass that its rounded by its own

338 views • 15 slides
Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University

Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University

Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University 17 July 2014 Sources Herdict , 20092014: 65,000 URLs reported as inaccessible (not necessarily censored) by users worldwide Citizen Lab ,

359 views • 7 slides
Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 , J. Schneider 2 , P.

Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 , J. Schneider 2 , P.

Twenty years of giant exoplanets - Proceedings of the Haute Provence Observatory Colloquium, 5-9 October 2015 Edited by I. Boisse, O. Demangeon, F. Bouchy & L. Arnold Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 ,

417 views • 4 slides
There is no Planet B. We only have one Earth. We only get one chance. We need to keep in

There is no Planet B. We only have one Earth. We only get one chance. We need to keep in

There is no Planet B. We only have one Earth. We only get one chance. We need to keep in mind the nature of our larger problem. https://environmentaljusticetv.wordpress.com/2012/08/16/people- Tim Weiskel - 2 and-planet-speech-only/

839 views • 59 slides
Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018

Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018

Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018 DISCLAIMER This confidential presentation has been prepared by Planet 13 Holdings Inc. (Planet 13 Holdings or the Company) solely fo r

430 views • 17 slides
Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation

Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation

GP Regression with Censored Data using EP Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation Introduction Propagation Problem Setting Bayesian Framework Perry Groot , Peter Lucas Prior - GPs

554 views • 17 slides
Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET

Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET

Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET MassCONECT U54 Outreach Core of the U54 Partnership What we ask Training Engagement Toolkit Surveys Technical assistance What we provide Online

767 views • 51 slides
Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia,

Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia,

Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia, Politecnico di Milano K. Makino, M. Berz Michigan State University 5th International Workshop on Taylor Model Methods Toronto, May 20 23, 2008

308 views • 28 slides
The heteroscedastic odd log-logistic generalized gamma regression model for censored data F

The heteroscedastic odd log-logistic generalized gamma regression model for censored data F

The heteroscedastic odd log-logistic generalized gamma regression model for censored data F abio Prataviera Edwin M. M. Ortega Gauss M. Cordeiro Altemir da Silva Braga VIII - Encontro dos Alunos da P os Gradua c ao em Estat

865 views • 39 slides
Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of

Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of

Compstat2010, Paris, August 2227 Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of Mathematics and Statistics Faculty of Science, Masaryk University Brno, Czech Republic Supported by M SMT

275 views • 23 slides
Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing

Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing

Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing Values Yuliya Karpievitch Imputation And Censored Values Yuliya Karpievitch Missing Values and Imputation Some algorithms expect a

531 views • 16 slides
Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels

Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels

Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels David Sontag Course announcements No recitation this Friday, but will be an extra office instead (2pm, 1-390) Problem set 1 due Mon Feb 24

419 views • 30 slides
Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2.

Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2.

Cooling the Planet Cooling the Planet Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2. Subros Business 4. Past Performance and Future Plan 2 Cooling the Planet Cooling the Planet About Subros

645 views • 41 slides
Characterizing uncertainty of the exposure point concentration based on left-censored data

Characterizing uncertainty of the exposure point concentration based on left-censored data

1 Characterizing uncertainty of the exposure point concentration based on left-censored data Niloofar Shoari PhD candidate Jean-Sbastien Dub, Ph.D Department of Construction Engineering 27 April 2016 Montreal, Canada 2 What are

767 views • 18 slides
Computational treatment of the error distribution in nonparametric regression with right-censored

Computational treatment of the error distribution in nonparametric regression with right-censored

Estimation Asymptotic results Bandwidth selection Simulations Data Analysis Computational treatment of the error distribution in nonparametric regression with right-censored and selection-biased data Graldine LAURENT Jointly with Cdric

528 views • 38 slides
Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for

Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for

Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for our World Interdisciplinary lecture series Institute for Interdisciplinary Studies (University of Amsterdam) Islands: Models for our Planet

200 views • 4 slides
HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC,

HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC,

http://www.helio-vo.eu HELIO, a Heliospheric virtual observatory J. Aboudarham, LESIA, Paris Observatory, VO-PDC, France R.D. Bentley, MSSL/UCL, UK A. Csillaghy, FHNW, Switzerland Great range of data Radio imaging Detail Flux, count rate,

145 views • 11 slides
Planet Earth: Plate Tectonics Recommended Books: An Introduction to Our Dynamic Planet ( ODP ),

Planet Earth: Plate Tectonics Recommended Books: An Introduction to Our Dynamic Planet ( ODP ),

Planet Earth: Plate Tectonics Recommended Books: An Introduction to Our Dynamic Planet ( ODP ), 2007, Rogers, N. et al. (Eds.), Cambridge University Press, 390 pp. An Introduction to Global Geophysics ( GG ), 2004, C. R. M. Fowler, Cambridge

558 views • 51 slides
ROBUST LOCATION AND SCALE ESTIMATION WITH CENSORED OUTCOMES Jerome H. Friedman Stanford

ROBUST LOCATION AND SCALE ESTIMATION WITH CENSORED OUTCOMES Jerome H. Friedman Stanford

ROBUST LOCATION AND SCALE ESTIMATION WITH CENSORED OUTCOMES Jerome H. Friedman Stanford University MACHINE LEARNING y = F ( x , z ) y = outcome variable x = ( x 1 , x p ) observed predictor variables z = ( z 1 , z 2 , ) other

739 views • 53 slides
Regression modelling of misclassified correlated interval-censored data Workshop on Flexible

Regression modelling of misclassified correlated interval-censored data Workshop on Flexible

Arno st Kom arek Dept. of Probability and Mathematical Statistics Regression modelling of misclassified correlated interval-censored data Workshop on Flexible Models for Longitudinal and Survival Data with Applications in Biostatistics

1.35k views • 100 slides
Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory

Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory

conference & convention enabling the next generation of networks & services Submarine Cabled Real-time Seafloor Observatory and Subsea Engineering ROV for Observatory Construction Katsuyoshi KAWAGUCHI Japan Agency for Marine-Earth

611 views • 26 slides
MassBrowser Unblock cking the Censored Web fo for the Masses, by the Masses Milad Nasr, Hadi

MassBrowser Unblock cking the Censored Web fo for the Masses, by the Masses Milad Nasr, Hadi

MassBrowser Unblock cking the Censored Web fo for the Masses, by the Masses Milad Nasr, Hadi Zolfaghari, Amir Houmansadr, Amirhossein Ghafari University of Massachusetts, Amherst 1 Internet Censorship 2 Censorship Circumvention Tools 3

827 views • 30 slides

More recommend