anonymous named data networking application
play

Anonymous Named Data Networking Application NDN Security Group - PowerPoint PPT Presentation

Mar 18, 2024 •108 likes •232 views

Anonymous Named Data Networking Application NDN Security Group Ersin Uzun, Steven DiBenedetto, Gene Tsudik, Paolo Gasti Privacy Challenges in NDN Name Privacy: semantically related names Interested in /healthonline/STDs/..

  1. Anonymous Named Data Networking Application NDN Security Group Ersin Uzun, Steven DiBenedetto, Gene Tsudik, Paolo Gasti

  2. Privacy Challenges in NDN • Name Privacy: semantically related names – Interested in “/healthonline/STDs/..” • Content Privacy: unencrypted public content. – Retrieved content is an “.mp3” file • Signature Privacy: leaked signer(publisher) identity – Retrieved content is signed by “match.com” • Cache privacy: detectable cache hits/misses – Interests from this user usually misses caches -- it is for Russian content. 1

  3. Objective • Design a practical system for NDN that enables – user privacy and anonymity – censorship resistance • Implement and evaluate its performance and anonymity guarantees 2

  4. Threat Model • Passive: – Traffic observation & fingerprinting – Timing & size correlation • Active: – Moving attacker – Compromised routers & content producers 3

  5. Named Data Onion Routing (NDor) • Consists of client and anonymizing router (AR) software • Supports two modes – Ephemeral : Asymmetric encryption of interests – Session: Symmetric encryption of interests • Client: – Encrypt & encapsulate interests – Decrypt & decapsulate data • Anonymizing Routers: – Decrypt & decapsulate interests – Encrypt & encapsulate data 4

  6. Interest & Content Format • Layers of encrypted Interests reside inside the name component of interests – E.g.,: /anonymizer/Enc(Timestamp || key || Interest) • Content is encrypted with the client-provided key on its way back – Encapsulation is published under the requested name and signed by ARs. 5

  7. NDor Example ? /OR1/ OR2/ nytimes.com/today ? /nytimes.com/today /OR1 /OR2 ? /OR2/ nytimes.com/today ? /nytimes.com/today 6

  8. Experimental Setup OR1 OR2 Data Forwarding Path • Experiments on ONL – Line topology – Comparison with TOR (for comparable privacy) 7

  9. Initial Results Cold Start: Warm Start: Including Initial setup time Omitting the setup time �� �� �������� ��������� �� �� NDor-S ���� ����������������� ������������������� ������������������� ��������� Dor ������ ���������������� �� �� �� �� �� �� �� �� �� �� �� �� �� ��� ���� �� ��� ���� �������������� �������������� • Computational relative overhead is comparable to Tor... • Expected real-life overhead is less than Tor • NDor requires less hops (2 ARs only compared to 3 in Tor and others) • Dynamic caching on and around exit nodes 8

  10. Other Security topics in NDN project • More efficient security primitives – Esp. signature schemes • New library functionalities – e.g., access control, key mgnt, signed interests… • Trust management research – Alternatives for PKI 9

  11. Thanks! • NDN website: – http://www.named-data.net • Contact information: – euzun@parc.com 10

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was developed in the 60s and 70s Networking was mainly used for resource sharing. IP was the effective communication protocol in place.

484 views • 29 slides
Application aware access and distribution of digital objects using Named Data Networking (NDN)

Application aware access and distribution of digital objects using Named Data Networking (NDN)

Application aware access and distribution of digital objects using Named Data Networking (NDN) July 4, 2017 University of Amsterdam System and Network Rahaf Mousa Engineering Supervisor: dr.Zhiming Zhao 1 Motivation In big data

586 views • 21 slides
ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State University ANDaNA: Anonymous

ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State University ANDaNA: Anonymous

ANDaNA: Onion Routing for NDN Steve DiBenedetto Colorado State University ANDaNA: Anonymous Named Data Networking Application NDSS 12 Steven DiBenedetto, Paolo Gasti, Gene Tsudik, Ersin Uzun Information Linkage & Leakage I:

820 views • 52 slides
Advancing Applications from the Edge In with Named Data Networking Lixia Zhang July, 2017

Advancing Applications from the Edge In with Named Data Networking Lixia Zhang July, 2017

Advancing Applications from the Edge In with Named Data Networking Lixia Zhang July, 2017 ice-ar.named-data.net 1 NDN-Enabled Secure Edge Networking with Augmented Reality Integration of heterogeneous low-level wireless tech. with

540 views • 13 slides
Named Data Networking 1. V Jacobson, D.K. Smetters, J.D. Thornton, M.F. Plass, N.H. Briggs, R.L.

Named Data Networking 1. V Jacobson, D.K. Smetters, J.D. Thornton, M.F. Plass, N.H. Briggs, R.L.

Named Data Networking 1. V Jacobson, D.K. Smetters, J.D. Thornton, M.F. Plass, N.H. Briggs, R.L. Braynard: Networking Named Content, CoNEXT, 2009. 2. L. Zhang, D. Estrin, J. Burke, V. Jacobson, J.D. Thornton, D.K. Smetters, B. Zhang, G. Tsudik,

762 views • 15 slides
beyond network selection: exploiting access network hetero- geneity with named data networking

beyond network selection: exploiting access network hetero- geneity with named data networking

2nd ACM Conference on Information-Centric Networking . Klaus M. Schneider, Udo R. Krieger October 2, 2015 University of Bamberg, Germany 0 beyond network selection: exploiting access network hetero- geneity with named data networking 1

725 views • 25 slides
Sh Shari ring mH mHealth Da Data a via via Na Named Da Data Ne Networking Haitao Zhang 1

Sh Shari ring mH mHealth Da Data a via via Na Named Da Data Ne Networking Haitao Zhang 1

Sh Shari ring mH mHealth Da Data a via via Na Named Da Data Ne Networking Haitao Zhang 1 , Zhehao Wang 2 , Christopher Scherb 3 , Claudio Marxer 3 , Jeff Burke 2 , Lixia Zhang 1 , Christian Tschudin 3 1. UCLA IRL 2. UCLA REMAP 3.

752 views • 20 slides
Towards Evaluating Named Data Networking for the IoT: A Framework for OMNeT++ Amar Abane 1 2 ,

Towards Evaluating Named Data Networking for the IoT: A Framework for OMNeT++ Amar Abane 1 2 ,

Towards Evaluating Named Data Networking for the IoT: A Framework for OMNeT++ Amar Abane 1 2 , Paul Muhlethaler 3 , Samia Bouzefrane 1 , Mehammed Daoui 2 , and Abdella Battou 4 1 Conservatoire National des Arts et Mtiers - Paris, France 2

558 views • 23 slides
NDN: an Orchestrated Microservice Architecture for Named Data Networking Xavier MARCHAL,

NDN: an Orchestrated Microservice Architecture for Named Data Networking Xavier MARCHAL,

NDN: an Orchestrated Microservice Architecture for Named Data Networking Xavier MARCHAL, Thibault CHOLEZ, Olivier FESTOR LORIA, UMR 7503 (University of Lorraine, CNRS, INRIA) Vandoeuvre-les-Nancy, F-54506, France September 22, 2018

786 views • 21 slides
NAMED DATA NETWORKING IN SCIENTIFIC APPLICATIONS Susmit Shannigrahi, Chengyu Fan and Christos

NAMED DATA NETWORKING IN SCIENTIFIC APPLICATIONS Susmit Shannigrahi, Chengyu Fan and Christos

NAMED DATA NETWORKING IN SCIENTIFIC APPLICATIONS Susmit Shannigrahi, Chengyu Fan and Christos Papadopoulos Colorado State University March 23, 2017 Work supported by NSF #1345236 and #13410999 CMIP5 Servers 2 2 3 Years of CMIP5 Data Access

937 views • 35 slides
From Crowd to Cloud: Apply Named Data Networking Principles to Manage Air Sensor Data Yifang

From Crowd to Cloud: Apply Named Data Networking Principles to Manage Air Sensor Data Yifang

From Crowd to Cloud: Apply Named Data Networking Principles to Manage Air Sensor Data Yifang Zhu, UCLA School of Public Health Alex Afanasyev & Lixia Zhang, UCLA Computer Science 1 New opportunities Technology advances in low-cost and

384 views • 12 slides
NDN DeLorean: An Authentication System for Data Archives in Named Data Networking Yingdi Yu

NDN DeLorean: An Authentication System for Data Archives in Named Data Networking Yingdi Yu

NDN DeLorean: An Authentication System for Data Archives in Named Data Networking Yingdi Yu (UCLA), Alexander Afanasyev (Florida International University), Jan Seedorf (HFT Stuttgart), Zhiyi Zhang (UCLA), Lixia Zhang (UCLA), ACM Information

455 views • 18 slides
Realizing a Virtual Private Network using Named Data Networking September 28, 2017 Craig

Realizing a Virtual Private Network using Named Data Networking September 28, 2017 Craig

Realizing a Virtual Private Network using Named Data Networking September 28, 2017 Craig Partridge Samuel Nelson Derrick Kong Th This document does not contain technology or te technical data controlled under either the U.S. In Inter

431 views • 13 slides
A World on NDN Affordances and Implications of the Named Data Networking Future Internet

A World on NDN Affordances and Implications of the Named Data Networking Future Internet

A World on NDN Affordances and Implications of the Named Data Networking Future Internet Architecture Shilton, Burke, claffy, Duan, Zhang Examines the social impacts of NDN generated by key aspects of the architecture and critical

277 views • 6 slides
Pending Interest Table Sizing in Named Data Networking Luca Muscariello Orange Labs Networks /

Pending Interest Table Sizing in Named Data Networking Luca Muscariello Orange Labs Networks /

Pending Interest Table Sizing in Named Data Networking Luca Muscariello Orange Labs Networks / IRT SystemX G. Carofiglio (Cisco), M. Gallo, D. Perino (Bell Labs) 2 nd ACM Conference on Information-Centric Networking San Francisco 1st of

412 views • 19 slides
Schematizing Trust in Named Data Networking Yingdi Yu 1 , Alex Afanasyev 1 , David Clark 2 , kc

Schematizing Trust in Named Data Networking Yingdi Yu 1 , Alex Afanasyev 1 , David Clark 2 , kc

Schematizing Trust in Named Data Networking Yingdi Yu 1 , Alex Afanasyev 1 , David Clark 2 , kc claffy 3 , Van Jacobson 1 , Lixia Zhang 1 1. UCLA 2. MIT 3. CAIDA 1 Motivation Usability is critical to security solutions

259 views • 22 slides
Falsification using Speech Recognition: A Proof of Concept Study Hanyu Sun, Gonzalo Rivero, Ting

Falsification using Speech Recognition: A Proof of Concept Study Hanyu Sun, Gonzalo Rivero, Ting

Identifying Interviewer Falsification using Speech Recognition: A Proof of Concept Study Hanyu Sun, Gonzalo Rivero, Ting Yan, Westat Background: Computer Audio-Recorded Interviewing (CARI) Computer Audio-Recorded Interviewing (CARI) allows

497 views • 12 slides
WIO WIOA Innovatio In ions: : Career Ca r Path thways s Na Navig igator Chicago

WIO WIOA Innovatio In ions: : Career Ca r Path thways s Na Navig igator Chicago

WIO WIOA Innovatio In ions: : Career Ca r Path thways s Na Navig igator Chicago Citywide Literacy Coalition Robert Guzman June 17, 2020 Click t k to e edi dit M Mas aster s sub t ub title Twitter: @ChiCityPathways FB:

454 views • 43 slides
Lecture 13 Lecture 13 2. B inary R epresentation Using Pointers with functions 3. H ardw

Lecture 13 Lecture 13 2. B inary R epresentation Using Pointers with functions 3. H ardw

1. Introduction Lecture 13 Lecture 13 2. B inary R epresentation Using Pointers with functions 3. H ardw are and S oftw are 4. H igh Level Languages Last time we saw how to use functions with 5. S tandard input and output

415 views • 3 slides
Part IV: Three-Nucleon Forces to Nuclei To understand the properties of complex nuclei from first

Part IV: Three-Nucleon Forces to Nuclei To understand the properties of complex nuclei from first

Part IV: Three-Nucleon Forces to Nuclei To understand the properties of complex nuclei from first principles Three-Nucleon Forces a b c Basic ideas why needed? 3N from chiral EFT Implementing in shell model Relation to monopoles

1.03k views • 48 slides
Key Technologies and Architectures h l d A h for Next Generation Mobile Networks Krishan K.

Key Technologies and Architectures h l d A h for Next Generation Mobile Networks Krishan K.

Key Technologies and Architectures h l d A h for Next Generation Mobile Networks Krishan K. Sabnani, SVP , Networking Research, Bell Labs August 27, 2007 The Network Evolution Yesterday Today Networks were designed to

887 views • 31 slides
Network analysis of the e-Mid interbank e-MID market: implications for systemic risk Dataset

Network analysis of the e-Mid interbank e-MID market: implications for systemic risk Dataset

Network analysis of the e-Mid interbank e-MID market: implications for systemic risk Dataset Market composition reshuffling Vasilis Hatzopoulos and Giulia Iori Entropy City University London Network Metrics The research leading to these

740 views • 54 slides
Disclosures Novel Clinical Trial Approaches in No personal financial conflicts of interest.

Disclosures Novel Clinical Trial Approaches in No personal financial conflicts of interest.

3/9/2019 Disclosures Novel Clinical Trial Approaches in No personal financial conflicts of interest. Children with Pulmonary Hypertension Grant funding: Institutional research or CME course funding to Penn from Actelion, Gilead, United

530 views • 14 slides
Experiment 3 Optical Rotation Optical rotation or optical activity The rotation of the plane

Experiment 3 Optical Rotation Optical rotation or optical activity The rotation of the plane

Experiment 3 Optical Rotation Optical rotation or optical activity The rotation of the plane of polarization of linearly polarized light as it travels through certain material-Chiral Materials. Optical activity occurs only in chiral

641 views • 10 slides

More recommend