wh what t ca can you learn fr from an n ip
play

Wh What t Ca Can You Learn fr from an n IP? Simran Patil and - PowerPoint PPT Presentation

Aug 14, 2023 •275 likes •444 views

Wh What t Ca Can You Learn fr from an n IP? Simran Patil and Nikita Borisov University of Illinois at Urbana-Champaign @SimranPatil25 @nikitab In the beginning GET /~nikitab/ HTTP/1.1 Host: geocities.com HTTP/1.1 200 OK

  1. Wh What t Ca Can You Learn fr from an n IP? Simran Patil and Nikita Borisov University of Illinois at Urbana-Champaign @SimranPatil25 @nikitab

  2. In the beginning… GET /~nikitab/ HTTP/1.1 Host: geocities.com … HTTP/1.1 200 OK … <blink>this page is under construction</blink> http://geocities.com /~nikitab/ under construction ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 2

  3. Today A? irtf.org DNS query irtf.org A 4.31.198.44 ClientHello TLS … SNI irtf.org handshake Server Certificate … CN=irtf.org GET /anrw/2019/ HTTP/1.1 Host: irtf.org … TLS HTTP/1.1 200 OK encrypted https:// irtf.org / ??? … ??? <title>ANRW’19</title> ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 3

  4. Soon? A? irtf.org DNS DNS-over-HTTPS/TLS query irtf.org A 4.31.198.44 ClientHello TLS … SNI irtf.org ESNI handshake Server Certificate TLS1.3 … CN=irtf.org GET /anrw/2019/ HTTP/1.1 Host: irtf.org … TLS HTTP/1.1 200 OK encrypted … 4.31.198.44 <title>ANRW’19</title> ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 4

  5. What can you learn from a domain name? drugrehab.ca vim.org dailystormer.name whatisabrony.com www.lgbtcenters.org foxnews.com lymphoma.ca nickleback.com anime-expo.org aljazeera.com www.oshawamosque.com furrycons.com montrealcathedral.ca ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 5

  6. Methodology Page Alexa global resources: domains => MIDA URLs, zdns IP address => top 1000000 domains, rDNS types 944 094 sites 1 819 087 domains 90 514 000 objects 1 795 506 resolved 741 049 IPs ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 6

  7. rDNS Public Suffix List (PSL) match: server1.facebook.com =~ facebook.com ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 7

  8. Domains and IPs domain1 IP 1 domain2 IP 2 domain3 Average Average IP 3 in-degree: 3.14 degree: 1.46 domain4 IP 4 domain5 IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 8

  9. IP Anonymity Set domain1 IP 1 domain2 IP 2 domain3 Average Average IP 3 in-degree: 3.14 degree: 1.46 domain4 IP 4 domain5 IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 9

  10. IP Anonymity Sets 47.6% IPs have an anonymity set of 1 Largest anonymity set has 16 050 domains ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 10

  11. Site-unique IPs domain1 IP 1 site1 domain2 IP 2 domain3 site2 IP 3 domain4 site3 IP 4 E.g., 74.125.132.154 has an domain5 anonymity set of 1— IP 5 stats.g.doubleclick.net—but is domain6 seen on over 10% of all the sites in our data set! ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 11

  12. Site-unique IPs domain1 IP 1 site1 68% of IPs in our set are site-unique domain2 IP 2 43% of sites use at least 1 resource that domain3 site2 IP 3 maps to a site-unique IP domain4 site3 For 39.5% of sites, the front page maps IP 4 domain5 to a site-unique IP IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 12

  13. Page Load Fingerprints site??? 23.64.109.196 192.33.31.70 98.84.112.4 193.200.231.133 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 13

  14. Site IP sets domain1 IP 1 site1 domain2 IP 2 domain3 site2 IP 3 site3 IP domain4 set site3 95.7% sites have a unique IP set IP 4 domain5 cluster of 903 sites has same IP set IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 14

  15. What about CDNs? • Many CDNs could use same IP address for all sites but don’t • Ported IP space • Connections w/o SNI • In our data set 200K domains are hosted by CloudFlare, using 91K IPs • Including 3% of the sites with a site-unique front page IP • Randomizing or normalizing IP addresses could help ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 15

  16. Conclusions • DNS privacy offers limited protection • For web browsing • Against an adversary with a good prior list of sites • In our Alexa 1M crawl dataset • 48% of all IPs map to a single domain • 68% of all IPs map to a single site • 43% of all sites contain a site-unique IP • 95% of sites have a unique IP set • Changes to web hosting infrastructure could help • Normalize or randomize CDN IP addresses ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 16

Recommend

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through designing for teaching Learn with others 1. Black Swan Conferences Hear The bigger picture Higher Education Blackboard UWA Experience

478 views • 16 slides
Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do

Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do

Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do more Be more Key Staff linked to Year 7 Mrs Angela Haynes Mrs Louisa Smith Head of Year 7 Year 7 PSM Ms Leyla Mrs Julia Emmel Bilsborough

736 views • 27 slides
Learn how together we can fight back and win Learn more about whats at stake Learn about the

Learn how together we can fight back and win Learn more about whats at stake Learn about the

In this presentation you will: Learn how together we can fight back and win Learn more about whats at stake Learn about the state of play around the country 2.3 million members across 50 states fighting for access to abortion care, birth

511 views • 40 slides
Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs.

Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs.

Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs. CPU Why to Learn About GPU? NVIDIA GPU relative performances Why to Learn About GPU? Hardware Why to Learn About GPU? Interactive rendering

852 views • 46 slides
Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser

Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser

Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser doppler velocimeter (LDV), use it for some measurements Learn about flow visualization Learn about subsonic forebodies at high angle of

952 views • 23 slides
what you need to learn now to decide what you need to learn next Bob Dowling

what you need to learn now to decide what you need to learn next Bob Dowling

Scientific computing: An introduction to tools and programming languages what you need to learn now to decide what you need to learn next Bob Dowling rjd4@cam.ac.uk University Information Services Course outline Basic concepts

762 views • 73 slides
Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO

Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO

Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO GOOD COUNSEL PRIMARY SCHOOL Se Seek, k, Learn rn and nd Serve ve PREPARATORY YEAR 2017 PARENT MEETING Seek, Se k, Learn rn and nd Serve ve

295 views • 18 slides
SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research

SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research

SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research Network (LEARN) and Department of Electrical &amp; Electronic Engineering, University of Peradeniya 1 Introduction LEARN: Lanka Educational

374 views • 10 slides
Organization 2 Organization Course Goals Learn to write good C ++ Learn to write

Organization 2 Organization Course Goals Learn to write good C ++ Learn to write

Organization Organization 2 Organization Course Goals Learn to write good C ++ Learn to write high-performance code with C ++ 3 Basic syntax Common idioms and best practices Learn to implement large systems with C ++ C ++ standard

593 views • 46 slides
Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn

Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn

Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn R &quot;There are three kinds of language objects that are available for modification, calls, expressions, and functions.&quot; Some useful

389 views • 11 slides
Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of

Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of

Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of Organizational Mission &amp; Structure Review the Elements of a Successful Proposal Gain Tips for Finding Funding Options Learn more

792 views • 26 slides
Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how

Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how

John A. Sahatjian Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how to survive and escape from a building on fire Learn how to prevent a fire VID IDEO EO PL PLAN AN TO TO GE GET T OU

174 views • 16 slides
Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and

Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and

1 Corinthians Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and live Learn and live 1. Take life seriously Learn and live 1. Take life seriously Give full effort to follow Jesus Learn and

298 views • 16 slides
How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture

How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture

Numeracy How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture together Introduction Whole School Calculation Policy Teaching methods have changed focus now on understanding, rather than

579 views • 20 slides
MQ Day 1 implement simple devices and topologies learn what send is learn about

MQ Day 1 implement simple devices and topologies learn what send is learn about

MQ Day 1 implement simple devices and topologies learn what send is learn about OnData difference between bind and connect shell script to start multiple devices? introduce proxy? /// kind of extended

970 views • 18 slides
1 Syntax-directed Translation: AST Construction example Using SableCC to specify grammar and

1 Syntax-directed Translation: AST Construction example Using SableCC to specify grammar and

Some Thoughts on Grad School Undergraduate Compilers Review and Intro to MJC Goal Announcements learn how to learn a subject in depth Mailing list is in full swing, go ahead and share test cases learn how to organize a project,

84 views • 6 slides
X minutes X Learn Lua Lua in in minutes Learn Roberto Ierusalimschy What is Lua What is

X minutes X Learn Lua Lua in in minutes Learn Roberto Ierusalimschy What is Lua What is

X minutes X Learn Lua Lua in in minutes Learn Roberto Ierusalimschy What is Lua What is Lua Yet another dynamic language not totally unlike Perl, Python, Tcl A scripting language emphasis in inter-language communication

608 views • 37 slides
1 Syntactic Analysis (Parsing) Bottom-Up Parsing: Shift-Reduce Grammer a + b + c Impose

1 Syntactic Analysis (Parsing) Bottom-Up Parsing: Shift-Reduce Grammer a + b + c Impose

Undergraduate Compilers Review and Intro to MJC Some Thoughts on Grad School Goal Announcements learn how to learn a subject in depth Mailing list is in full swing learn how to organize a project, execute it, and write about it

736 views • 5 slides
CS 330 Paper Review Learning to learn distributions Why Learn distributions aka learn

CS 330 Paper Review Learning to learn distributions Why Learn distributions aka learn

CS 330 Paper Review Learning to learn distributions Why Learn distributions aka learn p(x)? To generate data. But why generate data? Motivation Why learning to learn distributions? For quick (few-shot) learning &amp;

872 views • 21 slides
Auditd for the Masses Philipp Krenn @xeraa Learn about a breach From the press or

Auditd for the Masses Philipp Krenn @xeraa Learn about a breach From the press or

Auditd for the Masses Philipp Krenn @xeraa Learn about a breach From the press or users Learn about a breach Attackers asking for a ransom Learn about a breach Cloud provider's bill Learn about a breach Yourself after the

942 views • 51 slides
Introduction to CLIPS Objectives Learn what type of language CLIPS is Study the

Introduction to CLIPS Objectives Learn what type of language CLIPS is Study the

Introduction to CLIPS Objectives Learn what type of language CLIPS is Study the notation (syntax) used by CLIPS Learn the meaning of a field and what types exit Learn how to launch and exit from CLIPS Learn how to

811 views • 52 slides
What will you learn? During this presentation you will learn: How ID theft and account fraud

What will you learn? During this presentation you will learn: How ID theft and account fraud

What will you learn? During this presentation you will learn: How ID theft and account fraud happen The effects of ID theft and fraud How to avoid becoming a victim Identity Protection Identity Theft is Rampant Number of victims rose

764 views • 30 slides
Tools that learn Nando de Freitas and many DeepMind colleagues Learning slow to learn fast

Tools that learn Nando de Freitas and many DeepMind colleagues Learning slow to learn fast

Tools that learn Nando de Freitas and many DeepMind colleagues Learning slow to learn fast Infants are endowed with systems of core knowledge for reasoning about objects, actions, number, space, and social interactions [eg E. Spelke].

742 views • 31 slides
Learn more from your logfiles Learn more from your logfiles using machine learning using machine

Learn more from your logfiles Learn more from your logfiles using machine learning using machine

Learn more from your logfiles Learn more from your logfiles using machine learning using machine learning [DEV1156] Adam.Spiers @suse.com Dirk.Mueller @suse.com CC BY-NC 2.0 Thomas Hawk We are SUSE OpenStack Cloud software engineers We are

840 views • 68 slides

More recommend