encrypted dns privacy
play

Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra - PowerPoint PPT Presentation

Jul 07, 2023 •115 likes •533 views

Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra Siby, Marc Juarez, Claudia Diaz, Narseo Vallina-Rodriguez, Carmela Troncoso NDSS, 25 February 2020 Encrypted DNS > Privacy? Can encrypting DNS protect users from tra ffi

  1. Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra Siby, Marc Juarez, Claudia Diaz, Narseo Vallina-Rodriguez, Carmela Troncoso NDSS, 25 February 2020

  2. Encrypted DNS —> Privacy? Can encrypting DNS protect users from tra ffi c- analysis based monitoring and censoring? We conducted a number of experiments that show that: • Monitoring and censorship are feasible even when DNS is encrypted. • Current proposed EDNS0-based countermeasures are not su ffi cient to prevent tra ffi c analysis attacks. � 2

  3. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Host � 3

  4. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 4

  5. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 5

  6. Encrypted DNS DNS-over-TLS (DoT) google.com? DNS-over-HTTPS (DoH) Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 6

  7. Encrypted DNS google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 7

  8. Scenario DNS-over-HTTPS tra ffi c Client Recursive Resolver Adversary Goal: Determine webpage visited by the client from DNS-over-HTTPS tra ffi c. � 8

  9. Key Idea A webpage visit can have multiple DNS queries/ responses associated with it, which could be a fingerprint for identification of that webpage. � 9

  10. Scenario DNS-over-HTTPS tra ffi c Client Recursive Resolver Adversary Directionality Size { Headers Timing � 10

  11. Training DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 11

  12. Training DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary N-gram features 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 12

  13. Our experiment setup DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary Selenium + 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 13

  14. Adversary Goal 1: Monitoring Closed World Experiment Set of webpages visited by user Which particular webpage did the user visit? Set of webpages known to the adversary � 14

  15. Adversary Goal 1: Monitoring Closed World Experiment Set of webpages visited by user ~90% Precision and Recall Set of webpages known to the adversary 1,500 pages � 15

  16. Adversary Goal 1: Monitoring Open World Experiment Set of webpages visited by user Did the user visit a page in the monitored set? Set of webpages monitored by adversary � 16

  17. Adversary Goal 1: Monitoring Open World Experiment Set of webpages visited by user ~70% Precision and Recall Set of webpages monitored by adversary 50 pages 5,000 pages � 17

  18. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Study the uniqueness of DoH tra ffi c when only the first L TLS records have been observed (set of 5,000 pages). � 18

  19. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Adversary strategy: Block on first query? ‣ 4th record usually corresponds to first DoH query. ‣ Blocking prevents user from loading the page. ‣ Could result in high collateral damage — pages with same domain name lengths are also blocked! ‣ Iran: Blocking domain length = 13 blocks 97 domains in the censored website list, but also blocks ~86,000 domains in the Alexa top 1M list � 19

  20. Robustness of attack Adversary’s training setup DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary Selenium + What happens when any of the parameters in this setup change? � 20

  21. Robustness of attack: Parameters Location Infrastructure Time • Resolver (Dynamic Nature of • Client websites) • Platform � 21

  22. Robustness of attack: Results ‣ Changes in scenario a ff ect attack ‣ Adversary needs classifier tailored to scenario for best results � 22

  23. Monitoring and Censorship are feasible even when DNS tra ffi c is encrypted. Website fingerprinting using DNS traces requires ~100 times less data than traditional website fingerprinting. Countermeasures? � 23

  24. EDNS0 Based Countermeasures EDNS0: Extension mechanisms for DNS, specifies a padding option 1 Padding of DNS queries: We implemented the recommended padding strategy 2 on Cloudflare’s DoH client. Pad query to multiples of 128 bytes. Query with padding Client Resolver Pad query 1 RFC7830 2 RFC8467 � 24

  25. EDNS0 Based Countermeasures Padding of DNS responses: Cloudflare’s resolver pads responses to multiples of 128 bytes. Recommended strategy: Pad to multiples of 468 bytes Response with padding Client Resolver Pad response � 25

  26. Our experiments Cloudflare’s response padding EDNS0-128 strategy Recommended response padding EDNS0-468 strategy Perfect Padding Keep all TLS record sizes constant EDNS0-128-adblock User-side measure (ad-blocker usage) DNS over Tor Cloudflare’s DNS over Tor service � 26

  27. Results: Countermeasure comparison 90 70 45 34 0.001 7 3.5 � 27

  28. Results: DNS over Tor 90 Fixed cell sizes 70 Repacketization 45 34 0.001 7 3.5 � 28

  29. Results: Overhead Sent + received bytes (from TLS records) � 29

  30. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) DNS-over-TLS (DoT) google.com? DNS-over-HTTPS (DoH) Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 30

  31. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) We reran the classification process with DoT tra ffi c Using DoT leads to ~40% Precision and Recall (compared to ~90% for DoH) � 31

  32. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) We reran the classification process with DoT tra ffi c Using DoT leads to ~40% Precision and Recall (compared to ~90% for DoH) DoT tra ffi c looks di ff erent from DoH tra ffi c Does tra ffi c variability account for better protection in DoT? � 32

  33. Ongoing/Next Steps Realistic scenarios • Data pollution (Multi-tab browsing, background apps) • Caching Countermeasures • Padding + repacketization measures — Can we achieve protection without using Tor? � 33

  34. Summary • Surveillance and DNS-based censorship can occur even in the presence of encrypted DNS. • Current proposed EDNS0 based countermeasures are not su ffi cient. • Recommendation: Repacketization and padding Code and datasets at: https://github.com/spring-epfl/doh_tra ffi c_analysis Get in touch: sandra.siby@epfl.ch @sansib � 34

  35. BACKUP � 35

  36. Feature extraction TLS record sizes pcap 24 -58 63 110 -92 -86 -55 file Burst sizes Single record sizes 24 -58 173 -233 Uni-grams: (24), (-58)…. Uni-grams: (24), (-58)… Bi-grams: (24, -58), (-58, 63)… Bi-grams: (24, -58), (-58, 173)… Counts � 36

  37. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Consequences of blocking based on domain length Minimum collateral damage Censor blocking strategy Maximum censor gain Most popular website � 37

  38. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Adversary strategy: High confidence guessing? ‣ By 15th record (15% of trace), adversary can guess with high confidence. ‣ Less collateral damage. � 38

  39. DNS over Tor Clusters in confusion graph? Fixed cell sizes • A ff ect size features Repacketization • A ff ect directionality features Pages in a cluster are misclassified as each other Confusion graph of misclassified labels � 39

  40. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) DoT tra ffi c looks di ff erent from DoH tra ffi c: • Only DNS Type A records (compared to Type A and Type AAAA in DoH) • Even after removal of AAAA tra ffi c, smaller number of records in DoT (more ‘bare-bones’ than DoH) • Larger record size in DoT Does this tra ffi c variability account for better protection in DoT? � 40

Recommend

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Motivation Two-Cloud Setting PP k NN Classification Conclusion and Future Research Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security Yousef M. Elmehdwi Department of Mathematics and Computer

919 views • 19 slides
Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical

Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical

Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical databases Statistical databases, Differential privacy, Location-based privacy Encryption E ti Insider Threat/ DBMS Steganographic Intrusion

394 views • 24 slides
Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini

Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini

Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini & Mentari Djatmiko, Stephen Hardy, Wilko Henecka, Hamish Ivey-Law, Maximilian Ott, Huy Pham, Guillaume Smith, Brian Thorne, Dongyao Wu N1

1.04k views • 37 slides
The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th

The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th

The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th International Conference on Provable Security Xian, China - October 23rd, 2017 David Pointcheval Introduction 2 / 26 Anything from Anywhere

103 views • 7 slides
Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick

Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick

Privacy-Enhanced Search Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick smb@research.att.com ches@lumeta.com AT&T Labs Research Lumeta Corp. 1 Steven M. Bellovin March

886 views • 13 slides
Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy Technology Development Cybernetica dan@cyber.ee The Sharemind Privacy-preserving Computing Platform Components for Privacy Encrypted Privacy

714 views • 28 slides
TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1

TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1

TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1 DISCLAIMER: THIS IS NOT FULLY-BAKED We just fleshed out this idea yesterday, so its hand-wavy. Insufficient analysis has been done. IETF 94 TLS 1.3

886 views • 11 slides
CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CS573 Data Privacy and Security CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit: Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan MIT CSAIL Problem Confidential

576 views • 31 slides
Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model

Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model

Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model Sarvar Patel*, Giuseppe Persiano** and Kevin Yeo* *Google **University of Salerno Key k i was queried. Privacy-Preserving Storage Protocols Key k i

1.11k views • 81 slides
Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng

Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng

Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng Yang, Li Xiong, and Jian Pei. Secure Skyline Queries on Cloud Platform. ICDE 2017. Jinfei Liu, Juncheng Yang, Li Xiong, and Jian Pei. Secure and

1.1k views • 72 slides
Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah

Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah

Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah Lacharit, Brice Minaud , Kenny Paterson Information Security Group IEEE Symposium on Security and Privacy, May 21, 2018 Outsourcing Data with Search

654 views • 62 slides
BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is

BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is

BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is a solution that provides privacy for your communication needs. Biocoded is independent of network operators. Requires data network/internet access to

567 views • 27 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted

Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted

Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted Applications Learnings From Etesync Applications Learnings From Etesync stosb.com/talks Tom Hacohen tom@stosb.com FOSDEM 2019 @TomHacohen

361 views • 32 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov

Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov

Can You Trust Your Encrypted Cloud? An Assessment of SpiderOakONEs Security Anders Dalskov Claudio Orlandi Aarhus University RWC 2018 Agenda I A Threat Model for Encrypted Cloud Storage (ECS). I A high-level look into a modern ECS service

770 views • 47 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted]

Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted]

Garrett Robinson and Yan Zhu Real World Crypto 2015 Goal i dunno how to PGP [encrypted] [encrypted] Who uses it? https://freedom.press/securedrop/directory Threat Model Assets Sources identity Confidentiality & integrity

782 views • 35 slides
Bayes, not Nave Security Bounds on Website Fingerprinting Defenses Giovanni Cherubin Privacy

Bayes, not Nave Security Bounds on Website Fingerprinting Defenses Giovanni Cherubin Privacy

Bayes, not Nave Security Bounds on Website Fingerprinting Defenses Giovanni Cherubin Privacy Enhancing Technologies Symposium Minneapolis, Minnesota, USA 19 July, 2017 @gchers Website Fingerprinting (WF) Encrypted Tunnel Victim

400 views • 20 slides
Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of

Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of

Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of Computer Science University of California, Santa Barbara United States Challenge for Private Ranking Client uploads encrypted documents and

795 views • 20 slides

More recommend