traffic flow flow confidentiality confidentiality in in
play

Traffic Flow Flow Confidentiality Confidentiality in in IPsec - PowerPoint PPT Presentation

Oct 27, 2022 •237 likes •514 views

Universit di Roma di Roma Tor Tor Vergata Vergata Universit Traffic Flow Flow Confidentiality Confidentiality in in IPsec IPsec: : Traffic Protocol and and Implementation Implementation Protocol Giuseppe Bianchi,

  1. Università à di Roma di Roma “ “Tor Tor Vergata Vergata” ” Universit Traffic Flow Flow Confidentiality Confidentiality in in IPsec IPsec: : Traffic Protocol and and Implementation Implementation Protocol Giuseppe Bianchi, Csaba Kiraly, Renato LoCigno, Simone Teofili simone.teofili@uniroma2.it

  2. Malicious Traffic Analysis Bob Bob Alice Alice 192.168.2.3 192.168.2.3 192.168.2.5 192.168.2.5 � Length � Length � Arrival time � Arrival time � Packets direction � Packets direction 12/07/2007

  3. Source-Destination Link Amanda’ Amanda ’s s traffic traffic Bob is communicating with Bob is communicating with Alice! Alice! Carol’ ’s s traffic traffic Carol Bob’ ’s s traffic traffic Bob Alice’ ’s s traffic traffic Alice 12/07/2007

  4. User information recovery � Website fingerprinting � E.g. sample size profile for www.amazon.com � Bissias, Liberatore, Levine “Privacy Vulnerabilities in Encrypted HTTP Streams” � Password recovery � Canvel, Hiltgen, Vaudenay, Vuagnoux, “timing-based attack to Intercept passwords in a SSL/TLS Channel” � Different log-in error are characterized by different server’s answer times � http://www.brice.info/crypto 12/07/2007

  5. MixNet basic ideas Messages: • wrapped in fix length packs • grouped and sent in lexicographical order • in/out correspondence hidden by mix � "Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms," D. Chaum � Employs a “network” of mixes to avoid the need of a single trusted one 12/07/2007

  6. Goals Our goals is to provide a tool: � implementing the basic mechanisms to prevent statistical traffic analysis attacks � Dummy traffic � Packets padding � Traffic re-shaping � Flexible � Reconfigurable � Reprogrammable � Based on common standard � IPsec � Providing a underlying layer for the Anonymous Routing Networks � Supporting different kind of traffic 12/07/2007

  7. Traffic Flow Confidentiality Protocol TFC, like ESP and AH, can be managed exploiting the instruments TFC, like ESP and AH, can be managed exploiting the instruments Offered by IPsec IPsec (SA, SAD, SPD, (SA, SAD, SPD, … …) ) Offered by 12/07/2007

  8. TFC architecture 12/07/2007

  9. TFC Header � TFC protocol header contains � Security Parameter Index (SPI) � Protocol transported � Size of the data � The header is inserted between the ESP header and the payload � The padding is added between the payload and the trailer ESP 16 BIT 32 BIT 8 BIT 8 BIT NEXT PAYLOAD TFC Header TOCT Security Parameter Index HDR SIZE IP packet IP HDR ESP HDR TFC HDR PAYLOAD ESP TRAILER ESP AUTH TFC PADDING 12/07/2007

  10. TOCT- Type of Confidentiality Treatment • TOCT (Type of Confidentiality Treatment) – carry information about the type of treatment the packet may be subjected to – used in a multi-hop fashion, and especially for building IPsec-based Mix Networks. • Still to evaluate information disclosed!! 12/07/2007

  11. Packets fragmentation � It has been necessary to add an extension header (FRAG) � If needed the last fragment is padded 16 BIT 8 BIT 8 BIT NEXT FRAG Header ID OFFSET HDR TFC IP ESP TFC FRAG ESP ESP IP packet PAYLOAD PAYLOAD Fragment 1 HDR HDR HDR HDR TRL AUTH TFC IP ESP TFC FRAG TFC ESP ESP PAYLOAD Fragment 2 HDR HDR HDR HDR PADDING TRL AUTH 12/07/2007

  12. Packets Output Stack 12/07/2007

  13. Packets Input Stack 12/07/2007

  14. Control Logic � The "control logic“ is the "intelligence" of the system � It can combine the TFC basic mechanisms arbitrarily: � batching, � CBR (Continuous Bit rate), � random padding, � random delay algorithms � Queue congestion Reactive algorithm (still experimental) � Simple methods (fixed or random packet clocking), may be easily replaced by more complex algorithms � Able to take into account the status of the queues and/or the congestion level � The effectiveness of such adaptive approaches in terms of performance/privacy gains and trade-offs is still to be assessed 12/07/2007

  15. TFC SA parameters � A User Space application allows to configure TFC SA parameters � Delay Algorithm � Dummy � Dummy � Padding � Padding � Fragmentation � Fragmentation � Packets Length � Packets Length � Bit Rate � Bit Rate 12/07/2007

  16. Test over Public Network Tunnel Roma - Trento 12/07/2007

  17. TFC flows sample � We tested the TFC basic mechanisms modifying the statistical characteristics of a Data flow, in order to obtain a Random Bit Rate, CBR (constant bit rate) traffic. 12/07/2007

  18. Protocol fingerprinting � Accurate flow classification exploit its very first packets � Length ( L. Bernaille, R. Teixeira, and K. Salamatian, “Early Application Identification”, Proceedings of The 2nd ADETTI/ISCTE CoNEXT Conference, Portugal, 2006 ) � Inter-arrival time ( M. Crotti, F. Gringoli, P. Pelosato, L. Salgarelli, “A statistical approach to IP-level classification of network traffic”, IEEE ICC 2006, 11-15 Jun. 2006 ) � TFC tunnels avoid classification since � Packets are padded � Delay algorithms modify packets inter-arrival time � Different application flows can be multiplied on the same TFC SA. 12/07/2007

  19. Flows correlation • The Discreet page downloads in 1.3 seconds and generates 88 Kbytes of traffic. The same download with CBR TFC takes 4.7 seconds and 130 KBytes 12/07/2007

  20. Web site fingerprinting 12/07/2007

  21. Conclusion • The TFC IPsec security service provides effective protection against statistical traffic analysis techniques • We introduces fragmentation and packet inter-arrival time variation to balance the protection-performance tradeoff • We are evaluating how to increase the protection-performance tradeoff exploiting more complex control algorithms • We are planning to include in the basic tools packets multiplexing 12/07/2007

  22. Malicious Traffic Analysis Download from Amazon Download from Amazon 12/07/2007

  23. Traffic Flow Confidentiality 12/07/2007

  24. Traffic Flow Confidentiality IP IP T T C C P P , U , U D D P P , … , … M M ix-Likeprotocols ix-Likeprotocols IP IP T T C C P P , U , U D D P P , … , … tunnel m tunnel m ode ode transportm transportm ode ode tunnel m tunnel m ode ode transp transp ortm ortm ode ode T T F F C C IP IP sec E sec E S S P P 12/07/2007

  25. Output Stack 12/07/2007

  26. Dummy packets � A timer is associated to each queue. When the timer expires, a packet from the head of the queue is sent and the next timer is set � If the queue is empty, we create a new dummy packet (IP protocol = 59) and send it � Since the queue is situated before IPsec encryption, dummy packets are sequentially encrypted with data packets 12/07/2007

Recommend

Using Data Flow Analysis for Automatic Checking of Computational Confidentiality in

Using Data Flow Analysis for Automatic Checking of Computational Confidentiality in

Using Data Flow Analysis for Automatic Checking of Computational Confidentiality in Cryptographic Protocols Peeter Laud Tartu University and Cybernetica AS (joint work with Michael Backes) Teooriapevad Voorel, 29.0901.10.2006 p. 1/33

760 views • 47 slides
Traffic Flow Characteristics and Theory Primary Elements of Traffic Flow a. Flow Rate = q

Traffic Flow Characteristics and Theory Primary Elements of Traffic Flow a. Flow Rate = q

Traffic Flow Characteristics and Theory Primary Elements of Traffic Flow a. Flow Rate = q (vehicle per hour, vph) b. Density = k (vehicle per mile, vpm) c. Speed = u (mile per hour, mph) 2 Dr. Randa Oqab Mujalli Flow Flow (q) : is the

943 views • 20 slides
Confidentiality & Disclaimer Confidentiality The recipient of the information contained in

Confidentiality & Disclaimer Confidentiality The recipient of the information contained in

Confidentiality & Disclaimer Confidentiality The recipient of the information contained in this presentation, in receiving it, agrees not to copy or disclose any of its contents to third parties without the written consent of Kendeil

790 views • 34 slides
Confidentiality & Disclaimer Confidentiality The recipient of the information contained in

Confidentiality & Disclaimer Confidentiality The recipient of the information contained in

Confidentiality & Disclaimer Confidentiality The recipient of the information contained in this presentation, in receiving it, agrees not to copy or disclose any of its contents to third parties without the written consent of Kendeil

952 views • 33 slides
will be posted on the LBAB website soon! Confidentiality Reminder of Confidentiality: Board

will be posted on the LBAB website soon! Confidentiality Reminder of Confidentiality: Board

This presentation will be posted on the LBAB website soon! Confidentiality Reminder of Confidentiality: Board members and staff are not at liberty to discuss application files, criminal background checks, or other matters that occur in

961 views • 51 slides
Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy

Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy

Secure Information Flow ! Protecting the confidentiality of secret information Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy Blood type: AB Birth date: 9/5/46 HIV: positive ! Access control and

399 views • 10 slides
Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate

Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate

Traffic Flow Models CIVL 4162/6162 (Traffic Engineering) Lesson Objective Demonstrate traffic flow characteristics using observed data Describe traffic flow models Single regime Multiple regime Develop and calibrate traffic

343 views • 30 slides
Flow Networks Flow Network: - digraph - weights, called capacities on edges - two

Flow Networks Flow Network: - digraph - weights, called capacities on edges - two

M AXIMUM F LOW How to do it... Why you want it... Where you find it... The Tao of Flow: Let your body go with the flow. -Madonna, Vogue Maximum flow...because youre worth it. -Loreal Go with the flow, Joe.

619 views • 20 slides
Data Confidentiality in Data Confidentiality in Collaborative Computing Collaborative Computing

Data Confidentiality in Data Confidentiality in Collaborative Computing Collaborative Computing

Data Confidentiality in Data Confidentiality in Collaborative Computing Collaborative Computing Mikhail Atallah Department of Computer Science Purdue University Collaborators Collaborators Ph.D. students: Marina Blanton (exp grad

1.36k views • 29 slides
Incorporating Intra-flow Dependencies and Inter-flow Correlations for Traffic Matrix Prediction

Incorporating Intra-flow Dependencies and Inter-flow Correlations for Traffic Matrix Prediction

Incorporating Intra-flow Dependencies and Inter-flow Correlations for Traffic Matrix Prediction Presenter: Kaihui Gao Tsinghua University Catalog 1. Background 2. Related Works 3. Motivation 4. Data Analysis of Traffic Matrix 5.

468 views • 18 slides
Objectives Network Flow Max flow Min cut March 29, 2019 CSCI211 - Sprenkle 1

Objectives Network Flow Max flow Min cut March 29, 2019 CSCI211 - Sprenkle 1

3/29/19 Objectives Network Flow Max flow Min cut March 29, 2019 CSCI211 - Sprenkle 1 Motivating Flow Network Problems Modeling transportation networks Edges: carry traffic Nodes: pass traffic between edges Can represent

646 views • 23 slides
MODERN MEMORY DEFENSES GRAD SEC SEP 14 2017 TODAYS PAPERS CONTROL FLOW INTEGRITY

MODERN MEMORY DEFENSES GRAD SEC SEP 14 2017 TODAYS PAPERS CONTROL FLOW INTEGRITY

MODERN MEMORY DEFENSES GRAD SEC SEP 14 2017 TODAYS PAPERS CONTROL FLOW INTEGRITY Fundamentally, code injection attacks altered the target programs control flow Recall: Confidentiality, Integrity, Availability Most integrity

937 views • 30 slides
Practical Mostly-Static Information Flow Control Andrew Myers MIT Lab for Computer Science

Practical Mostly-Static Information Flow Control Andrew Myers MIT Lab for Computer Science

Practical Mostly-Static Information Flow Control Andrew Myers MIT Lab for Computer Science Privacy Old problem (secrecy, confidentiality) : prevent programs from leaking data Untrusted, downloaded code: more important Standard

891 views • 23 slides
Decentralized Information Flow Control RK Shyamasundar Tata Institute of Fundamental Research

Decentralized Information Flow Control RK Shyamasundar Tata Institute of Fundamental Research

Decentralized Information Flow Control RK Shyamasundar Tata Institute of Fundamental Research Mumbai shyam@tifr.res.in Confidentiality Example (Contd) Principal Preparer distributor of WebTax-may have privacy interests WebTax

673 views • 38 slides
Compromise Agreements & Confidentiality Examining the impact of Duchy Farms Kennels Ltd v.

Compromise Agreements & Confidentiality Examining the impact of Duchy Farms Kennels Ltd v.

Compromise Agreements & Confidentiality Examining the impact of Duchy Farms Kennels Ltd v. Steels on confidentiality clauses in settlement agreements. The Old Position Boilerplate confidentiality clauses in most COT3/Settlement

292 views • 6 slides
Per-Thread Compositional Compilation for Confidentiality-Preserving Concurrent Programs Robert

Per-Thread Compositional Compilation for Confidentiality-Preserving Concurrent Programs Robert

Per-Thread Compositional Compilation for Confidentiality-Preserving Concurrent Programs Robert Sison 13 Jan 2018 THE UNIVERSITY OF NEW SOUTH WALES www.data61.csiro.au A confidentiality-preserving program Cross Domain Desktop Compositor

1.49k views • 118 slides
Content-Base Confidentiality lessons learned in the past year Yingdi Yu UCLA 9/29/15

Content-Base Confidentiality lessons learned in the past year Yingdi Yu UCLA 9/29/15

Content-Base Confidentiality lessons learned in the past year Yingdi Yu UCLA 9/29/15 ndncomm2015 1 What is content-based confidentiality? Confidentiality stays with content independent from where the content is

456 views • 11 slides
Potential Flow & Flow Nets Potential Flow Irrotational flow for which implies:

Potential Flow & Flow Nets Potential Flow Irrotational flow for which implies:

Potential Flow & Flow Nets Potential Flow Irrotational flow for which implies: This allows you to decompose velocity into a scalar potential such that: Combined with conservation of mass (continuity) and incompressibility you

110 views • 7 slides
June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message

June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message

June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message confidentiality block Using Mathematical Operations Pieter van den Hombergh stream study Fontys Hogeschool voor Techniek en Logistiek June 6, 2016

309 views • 4 slides
Confidentiality in the Workplace What HR Partners Need to Know Speakers: Missy Matella,

Confidentiality in the Workplace What HR Partners Need to Know Speakers: Missy Matella,

Confidentiality in the Workplace What HR Partners Need to Know Speakers: Missy Matella, Assistant General Counsel Bryan Dearinger, Assistant General Counsel Mahnaz Ghaznavi, Records Manager Overview Primary Sources of Confidentiality in

865 views • 8 slides
Flow Visualization Overview: Flow Visualization (1) Introduction, overview Flow data Simulation

Flow Visualization Overview: Flow Visualization (1) Introduction, overview Flow data Simulation

Flow Visualization Overview: Flow Visualization (1) Introduction, overview Flow data Simulation vs. measurement vs. modelling 2D vs. surfaces vs. 3D Steady vs time-dependent flow Direct vs. indirect flow visualization Experimental flow

1.18k views • 92 slides
Flow Visualization Overview: Flow Visualization (1) Introduction, overview Fl Flow data d t

Flow Visualization Overview: Flow Visualization (1) Introduction, overview Fl Flow data d t

Flow Visualization Overview: Flow Visualization (1) Introduction, overview Fl Flow data d t Simulation vs. measurement vs. modelling 2D vs. surfaces vs. 3D Steady vs time-dependent flow St d ti d d t fl Direct vs. indirect flow

957 views • 92 slides
Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma

Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma

Assuring S tatistical Confidentiality and S ecurity: RBI experience Dr. Anil Kumar S harma (anilksharma@ rbi.org.in) Adviser Department of S tatistics & Information Management Reserve Bank of India Information Confidentiality &

519 views • 18 slides
Creating a new future for SA Governments technology services Dr Eva Balan-Vnuk Executive

Creating a new future for SA Governments technology services Dr Eva Balan-Vnuk Executive

Creating a new future for SA Governments technology services Dr Eva Balan-Vnuk Executive Director Confidentiality-I1-A1 Confidentiality-I1-A1 Confidentiality-I1-A1 Key themes 1. Better access 2. Seamless service delivery 3. Connected

290 views • 8 slides

More recommend