Understanding Network Interference in CS590B/690B Lecture

Slide Note
Embed
Share

Delve into the realm of network interference through the CS590B/690B lecture with Phillipa Gill at UMass Amherst. Explore topics such as Internet routing, timing attacks, BGP hijacks, Tor network functionality, relay selection, collusion scenarios, use of guards, web site fingerprinting attacks, traffic analysis attacks, and more. Gain insights on attack criteria, evaluation methods, and the threat landscape to the Tor network. Understand the challenges and strategies to mitigate AS-level attacks and ensure network security.

runk_ara
runk_ara Follow

Uploaded on Oct 04, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. CS590B/690B DETECTING NETWORK INTERFERENCE (SPRING 2018) LECTURE 16 PHILLIPA GILL UMASS -- AMHERST.

  2. WHERE WE ARE Last time: Internet routing review + timing attacks BGP hijacks/path asymmetry

  3. TEST YOUR KNOWLEDGE 1. 2. 3. 4. What is the goal of Tor? How does Tor accomplish this? How does Tor pick relays? What happens if you compromise.. The entry relay? The middle relay? The exit relay? What happens if the entry and exit relay collude? Why 3 hops? Why not 1? Why not 2? How does Tor avoid colluding relays from being chosen? Why are guards used? How are guards chosen? 10. What meta data is used by Web site fingerprinting attacks? 11. What is the premise behind Web site fingerprinting attacks? 5. 6. 7. 8. 9.

  4. TODAY Continuing with traffic analysis attacks. Readings: 1. Users get routed 2. Holding all the ASes

  5. REVIEW OF ATTACK CRITERIA/ EVALUATION OF POTENTIAL IN PRACTICE

  6. Attack criteria Any AS that lies on the Forward OR Reverse path, between the Source and Entry AND Exit and Destination can execute the attack Middle relay Entry relay Exit relay Destination AS Source AS Challenge: How to measure and mitigate these attacks in practice? We can t actually measure reverse paths Also can t traceroute through Tor Our approach: Use simulations on empirical AS graphs Consider all paths compliant with a model of routing policies Gives an approximation on potential attacks Need to measure/infer network paths! 6

  7. Understanding the threat to Tor Method: Use VPN to connect to 200 sites (100 popular, 100 likely censored) through Tor VPN end points located in 10 countries Examine AS-paths between source and destination and chosen entry/exit relays. Vulnerable sites (%) 53% of sites have at least some content delivered over a vulnerable Tor circuit 7

  8. Astoria: Avoiding AS-level attackers Choose an entry/exit relay to avoid attackers Usually there is such an option Challenge: How to find the safe option? Path computations need to be done on the client Challenge: ASes may collude We resolve sibling ASes (e.g., 701, 702, 703 = Verizon) and evaluate country-level adversaries Challenge: Minimize performance impact Cannot pre-construct circuits as in vanilla Tor Byproduct of destination-based relay selection Challenge: Don t overload popular relays If there are multiple safe options load balance across them What are the paths? Which relay selection is safe? 8

  9. What if there is no safe option? What if all relay selections contain at least one AS that can perform the timing attack? Astoria minimizes the amount any given attacker can learn Linear program 1/3 Entry AS 1 ISP 1 can snoop with prob. 2/3 ISP 1 1/3 Source AS Entry AS 2 ISP 2 Entry AS 3 1/3 9

  10. What if there is no safe option? What if all relay selections contain at least one AS that can perform the timing attack? Astoria minimizes the amount any given attacker can learn Linear program ISP 1 can snoop with prob. 1/2 Entry AS 1 1/4 ISP 1 Source AS Entry AS 2 1/4 ISP 2 Entry AS 3 1/2 10

  11. Additional slides See this slide deck (Slides 21-26, for overview of Cipollino) https://www.dropbox.com/s/podehxeulk8xsbp/rishab-defense- 2016.ppsx?dl=0 See this slide deck for an overview of the Users Get Routed reading: https://www.dropbox.com/s/ei8wse2zou537oi/L16-tor-users- routed-slides.pdf?dl=0 11

Related


Understanding Young's Double Slit Experiment and Interference Phenomena

Understanding Young's Double Slit Experiment and Interference Phenomena

uriah
Exploring Wave Interference in Physics: Superposition, Constructive, and Destructive Interference

Exploring Wave Interference in Physics: Superposition, Constructive, and Destructive Interference

laney
Understanding Interference in Radiocommunication Systems

Understanding Interference in Radiocommunication Systems

greer
Exploring Light Interference and Interferometry

Exploring Light Interference and Interferometry

ludo
Interference Susceptibility Evaluations of Pulsed Radio Altimeters Due to 5G Signal

Interference Susceptibility Evaluations of Pulsed Radio Altimeters Due to 5G Signal

scheffler_t
Understanding Forgetting: Theories and Influence on Memory Recall

Understanding Forgetting: Theories and Influence on Memory Recall

ludwig
Radio Frequency Spectrum Requirements for Civil Aviation Workshop Proceedings

Radio Frequency Spectrum Requirements for Civil Aviation Workshop Proceedings

mass_e
ICE: An Integrated Configuration Engine for Interference Mitigation

ICE: An Integrated Configuration Engine for Interference Mitigation

kbill
Analysis on Impact of Blank Guard Interval to Inter-Symbol Interference

Analysis on Impact of Blank Guard Interval to Inter-Symbol Interference

uknep
Understanding Network Interference and Censorship in Social Media

Understanding Network Interference and Censorship in Social Media

langston
Understanding Young's Double-Slit Experiment and Interference Patterns

Understanding Young's Double-Slit Experiment and Interference Patterns

lily
Understanding Interference and Beats in Waves

Understanding Interference and Beats in Waves

kaizen
Understanding Interference Protection in Technician Licensing Classes

Understanding Interference Protection in Technician Licensing Classes

seo_si
Exploring Light Interference from Single Atoms and Their Mirror Images

Exploring Light Interference from Single Atoms and Their Mirror Images

blso242
Enhancing In-Device Coexistence and P2P Communication in IEEE 802.11-23/2002r0

Enhancing In-Device Coexistence and P2P Communication in IEEE 802.11-23/2002r0

seraiah
Real-Time Digital Signal Processing Lab: Matched Filtering and Digital Pulse Amplitude Modulation

Real-Time Digital Signal Processing Lab: Matched Filtering and Digital Pulse Amplitude Modulation

jore_21
Advanced Topics in Communication Systems: Lecture 18 Overview and Final Exam Details

Advanced Topics in Communication Systems: Lecture 18 Overview and Final Exam Details

smiha
Network Slicing with OAI 5G CN Workshop Overview

Network Slicing with OAI 5G CN Workshop Overview

justice
Coexistence Challenges and Solutions in 6 GHz Networks

Coexistence Challenges and Solutions in 6 GHz Networks

archibald
Enhancing Throughput in Multi-Hop Wireless Networks Using Reconfigurable Antennas

Enhancing Throughput in Multi-Hop Wireless Networks Using Reconfigurable Antennas

lberk
Enhancing Medium Access Efficiency in IEEE 802.11 Networks

Enhancing Medium Access Efficiency in IEEE 802.11 Networks

cattal
Understanding Network Analysis: Whole Networks vs. Ego Networks

Understanding Network Analysis: Whole Networks vs. Ego Networks

kayliee
Modeling and Generation of Realistic Network Activity Using Non-Negative Matrix Factorization

Modeling and Generation of Realistic Network Activity Using Non-Negative Matrix Factorization

sidra
Understanding Snort: An Open-Source Network Intrusion Detection System

Understanding Snort: An Open-Source Network Intrusion Detection System

farah

More Related Content

Network Compression Techniques: Overview and Practical Issues
Network Compression Techniques: Overview and Practical Issues
Transportation Network Modeling and Analysis with C.Coupled SE Platform
Transportation Network Modeling and Analysis with C.Coupled SE Platform
Meridian: An SDN Platform for Cloud Network Services
Meridian: An SDN Platform for Cloud Network Services
Understanding Interference Phenomena and Standing Waves in Musical Instruments
Understanding Interference Phenomena and Standing Waves in Musical Instruments
Understanding Transient Interference Suppression in Speech Enhancement
Understanding Transient Interference Suppression in Speech Enhancement
Understanding Light: Reflection, Refraction, and Interference in Optics
Understanding Light: Reflection, Refraction, and Interference in Optics
Understanding Private Nuisance in Torts Law
Understanding Private Nuisance in Torts Law
Understanding Trespass to Land in Tort Law
Understanding Trespass to Land in Tort Law
Understanding the Superconducting Quantum Interference Device (SQUID)
Understanding the Superconducting Quantum Interference Device (SQUID)
RNA Interference Therapy Zilebesiran's Impact on Hypertension
RNA Interference Therapy Zilebesiran's Impact on Hypertension
Discussion on IEEE 802.11be Features for TSN Capabilities
Discussion on IEEE 802.11be Features for TSN Capabilities
IEEE 802.11-23/1999r0: Beacon Reception Impact of Narrow-Band Frequency Hopping Interference
IEEE 802.11-23/1999r0: Beacon Reception Impact of Narrow-Band Frequency Hopping Interference
Follow-up on UWB Channel Usage Coordination for Improved Coexistence
Follow-up on UWB Channel Usage Coordination for Improved Coexistence
Explore the Fascinating World of Thin Films and Nanotechnology
Explore the Fascinating World of Thin Films and Nanotechnology
Exploring Explanations of Forgetting in Memory
Exploring Explanations of Forgetting in Memory
Managing Cross-Border Interference in Laos: Insights and Challenges
Managing Cross-Border Interference in Laos: Insights and Challenges
Coordinated Null Steering for Enhanced Wireless Communication
Coordinated Null Steering for Enhanced Wireless Communication
Importance of Cross-Border Frequency Coordination in Spectrum Management
Importance of Cross-Border Frequency Coordination in Spectrum Management
Mill on Liberty and State Interference: Principles and Limits
Mill on Liberty and State Interference: Principles and Limits
Mechanisms of Gene Regulation Through RNA Interference
Mechanisms of Gene Regulation Through RNA Interference
Human Disease Symptom Network: Understanding Disease Relationships Through Symptoms and Genes
Human Disease Symptom Network: Understanding Disease Relationships Through Symptoms and Genes
Understanding Exponential Random Graph Models (ERGMs) in Social Network Analysis
Understanding Exponential Random Graph Models (ERGMs) in Social Network Analysis
Network Design Challenges and Solutions in Business Data Communications
Network Design Challenges and Solutions in Business Data Communications
Understanding 5G RAN Network Slicing and Architecture
Understanding 5G RAN Network Slicing and Architecture