accountability privacy
play

ACCOUNTABILITY & PRIVACY IN THE NETWORK David Naylor Matt - PowerPoint PPT Presentation

Mar 17, 2023 •428 likes •867 views

Carnegie Mellon University BALANCING ACCOUNTABILITY & PRIVACY IN THE NETWORK David Naylor Matt Mukerjee Peter Steenkiste ACCOUNTABILITY operators want to know who sends each packet so they can stop malicious senders VS PRIVACY users want

  1. Carnegie Mellon University BALANCING ACCOUNTABILITY & PRIVACY IN THE NETWORK David Naylor Matt Mukerjee Peter Steenkiste

  2. ACCOUNTABILITY operators want to know who sends each packet so they can stop malicious senders VS PRIVACY users want to hide who sends certain packets so they can do stuff without the whole world knowing

  3. ACCOUNTABILITY Accountable Internet Protocol [Andersen et al., SIGCOMM 2008] No Privacy cryptographic addresses Shutoff is Stop-Gap Fix anti-spoofing mechanism VS + shutoff protocol Requires “Smart NIC” PRIVACY Tor Instead of IP [Liu et al., HotNets 2011] No Accountability routers act as onion nodes Heavyweight

  4. ACCOUNTABILITY Accountable Internet Protocol [Andersen et al., SIGCOMM 2008] unforgeable source addresses VS PRIVACY Tor Instead of IP [Liu et al., HotNets 2011] hidden source addresses

  5. Destination Address Source Address …

  6. Destination Address Source Address … return address accountability sender identity error reporting flow ID

  7. Destination Address Source Address Source Address …

  8. Destination Address Accountability Address Return Address … Separate Accountability and Return Addresses

  9. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses

  10. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  11. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Flow How it Works Granularity Feasibility Real-World Deployment

  12. DELEGATED ACCOUNTABILITY Accountability Delegate shutoff( P ) brief ( P ) OK verify( P ) P P Sender Receiver

  13. brief (P) Sender to Delegate: “I sent this packet.”

  14. brief (P) FINGERPRINT CACHE 04AF4DE779 Batch fingerprints in B217C45091 F ( P ) Delegate CF24DBA5F0 Bloom filter B0AFD9C282 30E26E83B2 Delegate does not P learn packet contents Sender

  15. DELEGATED ACCOUNTABILITY Accountability Delegate shutoff( P ) brief ( P ) verify( P ) P P Sender Receiver

  16. verify (P) Verifier to Delegate: “Do you vouch for this packet?”

  17. verify (P) TWO CHECKS: 1. P A ➞ B in fingerprint cache A’s Delegate 2. Flow A ➞ B not shut off OK verify( P ) verify( P ) P A → B VERIFIED FLOWS A → B A

  18. verify (P) TWO CHECKS: 1. P A ➞ B in fingerprint cache A’s Delegate 2. Flow A ➞ B not shut off Most effective at first hop OK Verified flow entries periodically expire verify( P ) verify( P ) Routers keep no state during verification P A → B VERIFIED FLOWS A → B A

  19. DELEGATED ACCOUNTABILITY Accountability Delegate shutoff( P ) brief ( P ) verify( P ) P P Sender Receiver

  20. shutoff (P) Receiver to Delegate: “Stop this flow.”

  21. shutoff (P) BLOCKED A’s Delegate FLOWS A → B shutoff( P ) P A → B P A → B B VERIFIED FLOWS A → B

  22. shutoff (P) BLOCKED A’s Delegate FLOWS A → B shutoff( P ) B VERIFIED FLOWS

  23. shutoff (P) BLOCKED A’s Delegate FLOWS A → B shutoff( P ) DROP_FLOW verify( P ) P A → B B VERIFIED FLOWS

  24. shutoff (P) BLOCKED A’s Delegate FLOWS A → B shutoff( P ) Signature proves receiver sent shutoff DROP_FLOW verify( P ) Filtering happens at router, not NIC P A → B Delegate also facilitates long-term fix B VERIFIED FLOWS

  25. DELEGATED ACCOUNTABILITY Accountability Delegate shutoff( P ) brief ( P ) verify( P ) P P Sender Receiver

  26. IS THIS TECHNICALLY FEASIBLE? Accountability Delegate shutoff( P ) brief ( P ) verify( P ) P P Sender Receiver

  27. IS THIS TECHNICALLY FEASIBLE? brief ( P ) Storage Overhead < 1GB fingerprints at delegate Network Overhead 0.5% sending fingerprints

  28. IS THIS TECHNICALLY FEASIBLE? verify ( P ) Computational Overhead 78K ! at delegate verifies per sec Storage Overhead 94MB verified flow list at router CuckooFilter: [Zhou et al., CoNEXT 2013] ed25519: [Bernstein et al., 2012]

  29. FLOW GRANULARITY One flow ID for all clients GRANULARITY: DELEGATE ⬌ DESTINATION Large Anonymity Set One flow ID per connection GRANULARITY: TCP FLOW No Collateral Damage for Shutoff

  30. ASSIGNING FLOW IDS DELEGATE DELEGATE’S CLIENTS FLOW IDS SHARED VARIETY OF CLASSES UNIQUE No Collateral Damage Large Anonymity Set Flexible

  31. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Flow How it Works Granularity Feasibility Real-World Deployment

  32. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  33. HIDING RETURN ADDRESSES 1 2 END-TO-END ENCRYPTION ADDRESS TRANSLATION Destination Destination Destination Accountability Accountability Accountability Return Opaque ID Return … … … Protection From: Protection From: Source Domain Source Domain ✓ Local Observers Local Observers ✓ Transit Networks ✓ Transit Networks ✓ Receiver Receiver Stateless and secure: [Raghavan 2009]

  34. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  35. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  36. EXAMPLE DEPLOYMENTS Specialized Companies Source Domains as Delegates as Delegates FINGERPRINT EXTERNAL DESTINATION CACHE DELEGATE ACCOUNTABILITY DESTINATION DESTINATION RETURN ACCOUNTABILITY BORDER ROUTER RETURN SOURCE DOMAIN + DELEGATE No burden on source domains No briefing overhead Larger anonymity set Lower verification latency

  37. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  38. APIP: ACCOUNTABLE AND PRIVATE INTERNET PROTOCOL + + Destination Address Accountability Address Return Address Return Address … Separate Accountability Hidden Return Delegated Accountability and Return Addresses Addresses Real-World Deployment

  39. IN THE PAPER Source address roles Who can be a delegate? Anonymity set analysis Attacking APIP Trust/key management Protocol details

  40. ACCOUNTABILITY unforgeable source addresses VS PRIVACY hidden source addresses

  41. ACCOUNTABILITY every packet carries an accountability address Delegated Accountability for reporting misbehavior & PRIVACY return address can be hidden Return Address since network just needs Hidden Return Addresses accountability address

  42. Carnegie Mellon University BALANCING ACCOUNTABILITY & PRIVACY IN THE NETWORK David Naylor Matt Mukerjee Peter Steenkiste

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Crime and Punishment in the Cloud Accountability, Transparency, and Privacy Stefan Berthold ,

Crime and Punishment in the Cloud Accountability, Transparency, and Privacy Stefan Berthold ,

Crime and Punishment in the Cloud Accountability, Transparency, and Privacy Stefan Berthold , Simone Fischer-Hbner, Leonardo A. Martucci, and T obias Pulls Karlstad University Department of Mathematics and Computer Science 651 88 Karlstad,

250 views • 20 slides
The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets

The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets

The Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule Provisions Sets boundaries on the use/release of health records Holds violators accountable with penalties Strikes a balance when public health

357 views • 12 slides
Privacy through Accountability: A Computer Science Perspective Anupam Datta Associate Professor

Privacy through Accountability: A Computer Science Perspective Anupam Datta Associate Professor

Privacy through Accountability: A Computer Science Perspective Anupam Datta Associate Professor Computer Science, ECE, CyLab Carnegie Mellon University February 2014 Personal Information is Everywhere 2 Research Challenge Programs and

682 views • 57 slides
Securing History: Privacy and Accountability in Database Systems Gerome Miklau (Joint work with

Securing History: Privacy and Accountability in Database Systems Gerome Miklau (Joint work with

Securing History: Privacy and Accountability in Database Systems Gerome Miklau (Joint work with Brian Levine &amp; Patrick Stahlberg) University of Massachusetts, Amherst History a record of past data and operations performed on a system.

777 views • 29 slides
Texas HHS Privacy Office Health Insurance Portability And Accountability Act (HIPAA) The

Texas HHS Privacy Office Health Insurance Portability And Accountability Act (HIPAA) The

Presentation to Texas State University Student Speakers Seminar E. Angela Branch, Deputy Chief Privacy Officer of Audit and Compliance Travis Davis, Deputy Chief Privacy Officer Texas HHS Privacy Office Health Insurance Portability And

266 views • 25 slides
Privacy &amp; Security Matters: Privacy &amp; Security Matters: Protecting Personal Data

Privacy &amp; Security Matters: Privacy &amp; Security Matters: Protecting Personal Data

Privacy &amp; Security Matters: Privacy &amp; Security Matters: Protecting Personal Data Protecting Personal Data Privacy &amp; Security Project HIPAA: What it is Health Insurance Portability and Accountability Act of 1996 Also known as

445 views • 26 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Office of Accountability September 20, 2011 Office of Accountability Superintendent Office of

Office of Accountability September 20, 2011 Office of Accountability Superintendent Office of

Office of Accountability September 20, 2011 Office of Accountability Superintendent Office of Accountability 2011-2012 Organizational Chart Ron Rode Supervising Executive Director Administrative Assistant II Office of Accountability

724 views • 14 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of

Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of

How the City of Lewisville Has Complied in a Paperless World Sources s of Law HIPAA AA (Health Insurance Portability and Accountability Act of 1996) o Privacy Rule o Security Rule o Enforcement Rule o Genetic Information

416 views • 27 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Framework for a Next- Generation Accountability System 01 Accountability design components 02

Framework for a Next- Generation Accountability System 01 Accountability design components 02

Framework for a Next- Generation Accountability System 01 Accountability design components 02 Relative component accountability percentile 03 Criterion referenced component target AGENDA setting 04 Use of subgroup data for

557 views • 13 slides
Update for the new Accountability System Monica Daniels M.S., Accountability Assistant Executive

Update for the new Accountability System Monica Daniels M.S., Accountability Assistant Executive

Update for the new Accountability System Monica Daniels M.S., Accountability Assistant Executive Director Dr. Michael Tamborski, Accountability Executive Director Dr. Jeanene Barnett, Deputy Superintendent Assessment and Accountability Dr.

211 views • 19 slides
Cubical Type Theory favonia 1 2 t f 2 t f 2 t f 2

Cubical Type Theory favonia 1 2 t f 2 t f 2 t f 2

Cubical Type Theory favonia 1 2 t f 2 t f 2 t f 2 t f 4 0 7 3 8 1 5 2 6 2 t f 4 0 7 3 8 1 5 2 6 2 3 3 3 3

1.05k views • 62 slides
Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10

Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10

TU/e Algorithms (2IL15) Lecture 10 Algorithms (2IL15) Lecture 10 NP-Completeness, II 1 TU/e Algorithms (2IL15) Lecture 10 Summary of previous lecture P: class of decision problems that can be solved in polynomial time NP:

496 views • 34 slides
Limits on the Hardness of Lattice Problems in p Norms Chris Peikert SRI International

Limits on the Hardness of Lattice Problems in p Norms Chris Peikert SRI International

Limits on the Hardness of Lattice Problems in p Norms Chris Peikert SRI International Complexity 2007 1 / 12 Lattices and Their Problems Let B = { b 1 , . . . , b n } R n be linearly independent. The n -dim lattice L having basis B is:

902 views • 58 slides
On some open questions related to transport equations with critical regularity F. Bouchut 1 1

On some open questions related to transport equations with critical regularity F. Bouchut 1 1

On some open questions related to transport equations with critical regularity F. Bouchut 1 1 LAMA, CNRS &amp; Universit e Paris-Est-Marne-la-Vall ee Basel, June 2017 Transport equations with critical regularity 1 Outline 1 A review of

757 views • 31 slides
Acute Heart Failure Matthew Strehlow, MD, FACEP Epidemiology

Acute Heart Failure Matthew Strehlow, MD, FACEP Epidemiology

Acute Heart Failure Matthew Strehlow, MD, FACEP Epidemiology #1 cause of admission to the hospital in people &gt;65 yo 1 million admissions/year for

278 views • 9 slides
Natriuretikus peptidek a srg ssgi Diagnosztikban Sifok, 2017 november 9 Dr. Rudas

Natriuretikus peptidek a srg ssgi Diagnosztikban Sifok, 2017 november 9 Dr. Rudas

Natriuretikus peptidek a srg ssgi Diagnosztikban Sifok, 2017 november 9 Dr. Rudas Lszl Stabilabb paramter! Passzv vesekivlaszts megegyez az NT-proBNP s a BNP esetben, megkzelt en 15%20% Daniels LB J Am

442 views • 33 slides
Bibliografia Achilli V., Pietrobon M., Salemi G., (2004), Trasformazioni territoriali e MAP

Bibliografia Achilli V., Pietrobon M., Salemi G., (2004), Trasformazioni territoriali e MAP

Bibliografia Achilli V., Pietrobon M., Salemi G., (2004), Trasformazioni territoriali e MAP algebra. n.4, 2004. http://geomatica.como.polimi.it/workbooks/ Aime A., Ascari S., Bonfatti F., Monari P. (2001), ISOLA project environmental information

671 views • 9 slides
Immunity to Infectious Diseases BIOS 486A/586A K.J.Goodrum 2005 Topic Outline Routes and

Immunity to Infectious Diseases BIOS 486A/586A K.J.Goodrum 2005 Topic Outline Routes and

Immunity to Infectious Diseases BIOS 486A/586A K.J.Goodrum 2005 Topic Outline Routes and sites of infection Mechanisms of tissue injury in infection Timing of immune responses to infection Regulation of cell-mediated (T H 1)

348 views • 19 slides

More recommend