putting the p back in vpn an overlay network to resist
play

Putting the P back in VPN: An Overlay Network to Resist Traffic - PowerPoint PPT Presentation

Jul 08, 2023 •216 likes •788 views

Putting the P back in VPN: An Overlay Network to Resist Traffic Analysis Roger Dingledine The Free Haven Project http://freehaven.net/tor/ July 29, Black Hat 2004 Talk Outline Motivation: Why anonymous communication? Personal privacy

  1. Putting the P back in VPN: An Overlay Network to Resist Traffic Analysis Roger Dingledine The Free Haven Project http://freehaven.net/tor/ July 29, Black Hat 2004

  2. Talk Outline  Motivation: Why anonymous communication? − Personal privacy − Corporate and governmental security − Note: Anonymous comm. = Traffic analysis resistant comm.  Characterizing anonymity: Properties and Types  Mixes and proxies: Anonymity building blocks  Onion Routing: Lower latency, Higher Security  Features of Tor: 2 nd Generation Onion Routing  Hidden Servers and Rendezvous Points  Summary and Future Work

  3. Public Networks are Vulnerable to Traffic Analysis  In a Public Network (Internet):  Packet (message) headers identify recipients  Packet routes can be tracked Public Network Responder Initiator Encryption does not hide routing information.

  4. Who Needs Anonymity?  Socially sensitive communicants: − Chat rooms and web forums for abuse survivors, people with illnesses  Law Enforcement: − Anonymous tips or crime reporting − Surveillance and honeypots (sting operations)  Corporations: − Hiding collaborations of sensitive business units or partners − Hide procurement suppliers or patterns − Competitive analysis  Political Dissidents, Whistleblowers  Censorship resistant publishers

  5. Who Needs Anonymity?  You: − Where are you sending email (who is emailing you) − What web sites are you browsing − Where do you work, where are you from − What do you buy, what kind of physicians do you visit, what books do you read, ...

  6. Who Needs Anonymity?  Government

  7. Government Needs Anonymity? Yes, for...  Open source intelligence gathering − Hiding individual analysts is not enough − That a query was from a govt. source may be sensitive  Defense in depth on open and classified networks − Networks with only cleared users (but a million of them)  Dynamic and semitrusted international coalitions − Network can be shared without revealing existence or amount of communication between all parties  Elections and Voting

  8. Government Needs Anonymity? Yes, for...  Networks partially under known hostile control − To attack comm. enemy must take down whole network  Politically sensitive negotiations  Road Warriors  Protecting procurement patterns  Homeland Security Information to/from municipalities, industry,...  Anonymous tips (national security, congressional investigations, etc. In addition to law enforcement)

  9. Existing Protections Can be Improved by Anonymity  Virtual Hidden Networks − Traditional VPNs are not private − Anyone can see the network − Often adversary can see amount of communication − Onion Routing can provide anonymity to hide existence of private network and reduce countermeasure cost

  10. Existing Protections Improved by Anonymity Location Hidden Survivable Services for  − Homeland Security info to/from every town and industry − Censorship resistant publishers − Businesses with high value customers Hidden Server Properties  − Servers accessible from anywhere − Resist attacks from authorized users − Resist Distributed DoS − Resist physical attack − Minimize redundancy, Reduce costs − Provide the above better than: firewalls, multiple redundant servers, physically hardened sites, IP filter, IP traceback

  11. Who Needs Anonymity?  And yes criminals

  12. Who Needs Anonymity?  And yes criminals But they already have it. We need to protect everyone else.

  13. Anonymity Loves Company  You can't be anonymous by yourself − Can have confidentiality by yourself  A network that protects only DoD network users won't hide that connections from that network are from Defense Dept.  You must carry traffic for others to protect yourself  But those others don't want to trust their traffic to just one entity either. Network needs distributed trust .

  14. Anonymous From Whom? Adversary Model Recipient of your message  Sender of your message  => Need Channel and Data Anonymity Observer of network from outside  Network Infrastructure (Insider)  => Need Channel Anonymity Note: Anonymous authenticated communication makes  perfect sense Communicant identification should be inside the basic  channel, not a property of the channel

  15. Focus of this work is anonymity of the communication pipe, not what goes through it

  16. Grab the code and try it out  Published under the BSD license  Not encumbered by Onion Routing patent  Works on Linux, BSD, OS X, Solaris, Win32  Packaged for Debian, Gentoo, FreeBSD  Runs in user space, no need for kernel mods or root http://freehaven.net/tor/

  17. How Do You Get Communication Anonymity?  Many technical approaches  Overview of two extensively used approaches − Mixes − Proxies

  18. What does a mix do? message 1 message 2 message 3 Mix message 4 Randomly permutes and decrypts inputs

  19. What does a mix do? ? message 2 Key property: Adversary can't tell which ciphertext corresponds to a given message

  20. A look under the hood

  21. Basic Mix (Chaum ‘81) PK 3 PK 1 PK 2 Server 3 Server 2 Server 1

  22. Encryption of Message PK 3 PK 1 PK 2 message Ciphertext = E PK1 [E PK2 [E PK3 [message]]]

  23. Basic Chaum-type Mix Server 1 Server 2 Server 3 m1 m2 decrypt m2 decrypt m2 decrypt and and and permute permute permute m2 m3 m3 m1 m3 m1 m1 m3

  24. One honest server preserves privacy Server 1 Server 3 Server 2 ? m3

  25. What if you need quick interaction?  Web browsing, Remote login, Chat, etc.  Mixnets introduced for email and other high latency apps  Each layer of message requires expensive public-key crypto

  26. Basic Anonymizing Proxy anonymizing proxy anonymizing proxy • Channels appear to come from proxy, not true originator • Appropriate for Web connections, etc.: SSL, TLS, SSH (lower cost symmetric encryption) • Examples: The Anonymizer • Advantages: Simple, Focuses lots of traffic for more anonymity • Main Disadvantage: Single point of failure, compromise, attack

  27. Onion Routing Traffic Analysis Resistant Infrastructure  Main Idea: Combine Advantages of mixes and proxies  Use (expensive) public-key crypto to establish circuits  Use (cheaper) symmetric-key crypto to move data − Like SSL/TLS based proxies  Distributed trust like mixes  Related Work (some implemented, some just designs): − ISDN Mixes − Crowds, JAP Webmixes, Freedom Network − Tarzan, Morphmix

  28. Network Structure  Onion routers form an overlay network − Clique topology (for now) − TLS encrypted connections  Proxy interfaces between client machine and onion routing overlay network Client Initiator Responder Internet

  29. Tor

  30. Tor The Onion Routing

  31. Tor Tor's Onion Routing

  32. Tor Circuit Setup • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 Client Initiator

  33. Tor Circuit Setup • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 • Proxy tunnels through that circuit to extend to Onion Router 2 Onion Router 2 Client Initiator

  34. Tor Circuit Setup • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 • Proxy tunnels through that circuit to extend to Onion Router 2 Onion Router 2 • Etc Client Initiator

  35. Tor Circuit Usage • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 • Proxy tunnels through that circuit to extend to Onion Router 2 Onion Router 2 • Etc • Client applications connect and communicate over Tor circuit Client Initiator

  36. Tor Circuit Usage • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 • Proxy tunnels through that circuit to extend to Onion Router 2 Onion Router 2 • Etc • Client applications connect and communicate over Tor circuit Client Initiator

  37. Tor Circuit Usage • Client Proxy establishes session key + circuit w/ Onion Router 1 Onion Router 1 • Proxy tunnels through that circuit to extend to Onion Router 2 Onion Router 2 • Etc • Client applications connect and communicate over Tor circuit Client Initiator

  38. Where do I go to connect to the network?  Directory Servers − Maintain list of which onion routers are up, their locations, current keys, exit policies, etc. − Directory server keys ship with the code − Control which nodes can join network  Important to guard against Sybil attack and related problems − These directories are cached and served by other servers, to reduce bottlenecks

  39. Some Tor Properties  Simple modular design, Restricted ambitions − 26K lines of C code − Even servers run in user space, no need to be root − Just anonymize the pipe  Can use, e.g., privoxy as front end if desired to anonymize data − SOCKS compliant TCP: includes Web, remote login, mail, chat, more  No need to build proxies for every application − Flexible exit policies, each node chooses what applications/destinations can emerge from it

Recommend

CS5412: OVERLAY NETWORKS Lecture IV Ken Birman Overlay Networks 2 We use the term overlay

CS5412: OVERLAY NETWORKS Lecture IV Ken Birman Overlay Networks 2 We use the term overlay

CS5412 Spring 2012 (Cloud Computing: Birman) 1 CS5412: OVERLAY NETWORKS Lecture IV Ken Birman Overlay Networks 2 We use the term overlay network when one network (or a network-like data structure) is superimposed upon an underlying

793 views • 57 slides
ReSIST ReSIST Resilience for Survivability in IST A European Network of Excellence Second Open

ReSIST ReSIST Resilience for Survivability in IST A European Network of Excellence Second Open

ReSIST ReSIST Resilience for Survivability in IST A European Network of Excellence Second Open Workshop 1 ReSIST ReSIST Resilience for Survivability in IST A European Network of Excellence Rationale Resilience: definition and

565 views • 8 slides
CompSci 356: Computer Network Architectures Lecture 24: Overlay Networks Chap 9.4 Xiaowei Yang

CompSci 356: Computer Network Architectures Lecture 24: Overlay Networks Chap 9.4 Xiaowei Yang

CompSci 356: Computer Network Architectures Lecture 24: Overlay Networks Chap 9.4 Xiaowei Yang xwy@cs.duke.edu Overview What is an overlay network? Examples of overlay networks End system multicast Unstructured Gnutella,

972 views • 61 slides
Neural Network Overlay Using FPGA DSP Blocks Lenos Ioannou and Suhaib A. Fahmy School of

Neural Network Overlay Using FPGA DSP Blocks Lenos Ioannou and Suhaib A. Fahmy School of

Neural Network Overlay Using FPGA DSP Blocks Lenos Ioannou and Suhaib A. Fahmy School of Engineering, University of Warwick, UK Introduction Long back-end tool compilation hinders rapid deployment of Neural Networks on FPGAs at the edge

96 views • 7 slides
Peer-to-peer overlay networks Structured overlay network: Chord Basics Issue Large-scale

Peer-to-peer overlay networks Structured overlay network: Chord Basics Issue Large-scale

Peer-to-peer overlay networks Structured overlay network: Chord Basics Issue Large-scale distributed computer systems are spread across Each peer is assigned a unique m -bit identifier id . the Internet, yet their constituents need to

229 views • 3 slides
Feasibility of ILA as Network Virtualisation Overlay in multi-domain, multi-tenant Cloud Tako

Feasibility of ILA as Network Virtualisation Overlay in multi-domain, multi-tenant Cloud Tako

Feasibility of ILA as Network Virtualisation Overlay in multi-domain, multi-tenant Cloud Tako Marks Bsc. 04-07-2017 System and Network Engineering University of Amsterdam 1 Introduction A Network Virtualisation Overlay (NVO) is a collection

614 views • 29 slides
L2 Overlay L2 Overlay

L2 Overlay L2 Overlay

L2 Overlay L2 Overlay July 30, 2019 A. Gerrard, What Is Kubernetes?

536 views • 24 slides
Camp Prosperity: Resist! Strategies for Pushing Back Against Harmful Policies August 1, 2018

Camp Prosperity: Resist! Strategies for Pushing Back Against Harmful Policies August 1, 2018

Camp Prosperity: Resist! Strategies for Pushing Back Against Harmful Policies August 1, 2018 Welcome Carmen Shorter Senior Manager for Learning Prosperity Now Camp Prosperity Webinar Series Wednesdays from 2-3:30 pm July 18 ENLIST! Join

931 views • 46 slides
PUTTING THE HEALTH AND WEALTH BACK INTO WHITTLESEA Bianca Opasinis About our local prevention

PUTTING THE HEALTH AND WEALTH BACK INTO WHITTLESEA Bianca Opasinis About our local prevention

PUTTING THE HEALTH AND WEALTH BACK INTO WHITTLESEA Bianca Opasinis About our local prevention project City of Whittlesea experiences some of the biggest gambling losses across the state. Putting the Health and Wealth Back Into

358 views • 9 slides
Putting the reef back into Ridge Ridge Putting the reef back into to Reef

Putting the reef back into Ridge Ridge Putting the reef back into to Reef

Putting the reef back into Ridge Ridge Putting the reef back into to Reef Catchment Management Catchment Management to Reef for Pumicestone Pumicestone Passage. Passage. for Restored oyster reef, Chesapeake Bay Dr Ben

387 views • 21 slides
Resist the Darkness Engage the Light Chris Davis Back to the Bible The Problem- Darkness Most

Resist the Darkness Engage the Light Chris Davis Back to the Bible The Problem- Darkness Most

Resist the Darkness Engage the Light Chris Davis Back to the Bible The Problem- Darkness Most Frequent Temptations for ChristFollowing Men Common Struggles for men: No temptation has seized you except what is common to man. And God is

769 views • 31 slides
Putting the Contradictions Back in into Management Education Russ Vince Professor of Leadership

Putting the Contradictions Back in into Management Education Russ Vince Professor of Leadership

Putting the Contradictions Back in into Management Education Russ Vince Professor of Leadership and Change School of Management, University of Bath Why am I suggesting putting the contradictions back into management education? It is

295 views • 6 slides
ReSIST NoE ReSIST Resilience for Survivability in IST Resilient Computing: a multi-disciplinary

ReSIST NoE ReSIST Resilience for Survivability in IST Resilient Computing: a multi-disciplinary

ReSIST NoE ReSIST Resilience for Survivability in IST Resilient Computing: a multi-disciplinary MSc Curriculum Luca Simoncini Professor of Computer Engineering Faculty of Engineering, University of Pisa, Italy 2009/10/8-9 Paris, France

215 views • 17 slides
Eu Resist : An integrated system for management of antiretroviral drug resistance Francesca

Eu Resist : An integrated system for management of antiretroviral drug resistance Francesca

IST-2004-027173 Eu Resist : An integrated system for management of antiretroviral drug resistance Francesca Incardona (Informa s.r.l.) Eu Resist : to support clinicians treating HI V patients The Eu Resist project aims at developing an

514 views • 24 slides
Tomography-based Overlay Network Monitoring Yan Chen, David Bindel, and Randy H. Katz UC

Tomography-based Overlay Network Monitoring Yan Chen, David Bindel, and Randy H. Katz UC

Tomography-based Overlay Network Monitoring Yan Chen, David Bindel, and Randy H. Katz UC Berkeley Motivation Infrastructure ossification led to thrust of overlay and P2P applications Such applications flexible on paths and targets,

624 views • 15 slides
Routing on Overlay Networks EECS 228 Abhay Parekh parekh@eecs.berkeley.edu October 28, 2002

Routing on Overlay Networks EECS 228 Abhay Parekh parekh@eecs.berkeley.edu October 28, 2002

Routing on Overlay Networks EECS 228 Abhay Parekh parekh@eecs.berkeley.edu October 28, 2002 What is an overlay network? A network defined over another set of networks The overlay addresses its own nodes A Links on one layer are

567 views • 38 slides
Overlay-based IP Routing Richard Hartmann Chair for Network Architectures and Services

Overlay-based IP Routing Richard Hartmann Chair for Network Architectures and Services

Overlay-based IP Routing Richard Hartmann Chair for Network Architectures and Services Department for Computer Science Technische Universit at M unchen November 10, 2010 Richard Hartmann: Overlay-based IP Routing 1 Outline Motivation

571 views • 19 slides
Putting Artifjcial Intelligence Back into Peoples Hands Toward an Accessible, Transparent and

Putting Artifjcial Intelligence Back into Peoples Hands Toward an Accessible, Transparent and

Putting Artifjcial Intelligence Back into Peoples Hands Toward an Accessible, Transparent and Fair AI 2 February 2020 FOSDEM, Brussels, Belgium Vincent Lequertier FSFE Volunteer https://vl8r.eu 2/24 Agenda How to create

288 views • 24 slides
Mechanical Support for Efficient Dissemination on the CAN Overlay Network - Francesco Bongiovanni

Mechanical Support for Efficient Dissemination on the CAN Overlay Network - Francesco Bongiovanni

Mechanical Support for Efficient Dissemination on the CAN Overlay Network - Francesco Bongiovanni - INRIA Sophia Antipolis OASIS team Work done in collaboration with Dr. Ludovic Henrio 12 October 2011 Introduction Mechanizing formal proofs

656 views • 62 slides
PUTTING THE ARCTIC BACK ON THE MAP ARCTIC TASK FORCE 2016 THE ESTABLISHMENT OF THE ARCTIC

PUTTING THE ARCTIC BACK ON THE MAP ARCTIC TASK FORCE 2016 THE ESTABLISHMENT OF THE ARCTIC

PUTTING THE ARCTIC BACK ON THE MAP ARCTIC TASK FORCE 2016 THE ESTABLISHMENT OF THE ARCTIC COUNCIL International cooperation in the Arctic region entered into a new era in the years leading up to the end of the Cold War Ottawa

1.06k views • 78 slides
Putting fish back in the rivers and so much more F Lorraine Bodi, Vice President, BPA

Putting fish back in the rivers and so much more F Lorraine Bodi, Vice President, BPA

River Restoration Northwest Putting fish back in the rivers and so much more F Lorraine Bodi, Vice President, BPA Environment Fish & Wildlife February 2017 B O N N E V I L L E P O W E R A D M I N I S T R A T I O

463 views • 13 slides
Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project

Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project

Tor: An Anonymizing Overlay Network for TCP Roger Dingledine The Free Haven Project http://tor.freehaven.net/ http://tor.eff.org/ December 28, 21C3 2004 Talk Outline Motivation: Why anonymous communication? Personal privacy

1.03k views • 55 slides
National Web-Based Teleconference on Health IT: Putting the Patient Back in Patient-Centered Care

National Web-Based Teleconference on Health IT: Putting the Patient Back in Patient-Centered Care

National Web-Based Teleconference on Health IT: Putting the Patient Back in Patient-Centered Care March 30, 2011 Moderator: Angela Lavanderos Agency for Healthcare Research and Quality Presenters: Paul C. Tang Elizabeth A. Chrischilles Silka

1.04k views • 70 slides
A Novel Approach for Cooperative Overlay-Maintenance in Multi-Overlay Environments 1 Wu-Chun

A Novel Approach for Cooperative Overlay-Maintenance in Multi-Overlay Environments 1 Wu-Chun

A Novel Approach for Cooperative Overlay-Maintenance in Multi-Overlay Environments 1 Wu-Chun Chung, National Tsing Hua University 2010/11/30 A Novel Approach for Cooperative Overlay-Maintenance in Multi-Overlay Environments Chin-Jung Hsu, CS,

902 views • 35 slides

More recommend