censored planet observatory
play

Censored Planet Observatory Measuring Internet censorship globally, - PowerPoint PPT Presentation

May 16, 2023 •114 likes •644 views

Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely Internet Measurement Village 2020 Ram Sundara Raman June 26, 2020 Measuring Censorship is a Complex Problem! Internet censorship practices are

  1. Censored Planet Observatory Measuring Internet censorship globally, continuously, and remotely Internet Measurement Village 2020 Ram Sundara Raman June 26, 2020

  2. Measuring Censorship is a Complex Problem! Internet censorship practices are diverse in their methods, targets, timing, differing by regions (even within countries or networks), as well as across time. 2

  3. Direct Censorship Measurement Client Ask people on the ground, or deploy ● software or hardware in censored region ? (e.g. OONI probe, FreedomHouse) Use VPNs, or research networks (e.g. ● PlanetLab, ICLab) Server 3

  4. Challenges with Direct Measurements Scale Coverage Continuity Takes tremendous effort to Hard to obtain access Hard to continuously and recruit a large number of points that cover a majority repetitively run measurements volunteers or access points of networks in the country using volunteers Synchronization Ethics New updates and censorship Risky to run censorship measurement techniques measurements unless the must be pushed, and proper precautions are taken detection may be delayed 4

  5. IPv4 hosts - Internet infrastructure is everywhere 5

  6. Remote Censorship Client Measurements ? Can we detect whether pairs of hosts around the world can talk to each other without controlling either endpoint? Measurement Machine Server 6

  7. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Challenge: Design methods to detect interference remotely at all network layers, without end-user participation. 7

  8. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Satellite and Iris (https://www.censoredplanet.org/projects/satellite) 8

  9. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Spooky Scan and Augur (https://www.censoredplanet.org/projects/augur) 9

  10. Censorship can occur at multiple protocol layers DNS query censoredplanet.org HTTP requests DNS resolver (opt) TLS handshake Client TCP handshake IP routing Company ISP ISP Server Quack and Hyperquack (https://www.censoredplanet.org/projects/quack) (https://www.censoredplanet.org/projects/hyperquack) 10

  11. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 11

  12. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 12

  13. DNS Manipulation DNS query for https://censoredplanet.org Client 200.31.1.49 216.239.34.21 DNS Resolver 13

  14. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS Machine Resolver Satellite & Iris 14

  15. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS D Machine Resolver N S q u c e e r n y s o f o r r e d p l a n e Satellite & Iris t . o r g C 3 o n t r o l I P 4 Control Resolvers 15

  16. DNS query for censoredplanet.org 1 Test IP 2 Measurement OpenDNS D Machine Resolver N S q u c e e r n y s o f o r r e d p l a n e Satellite & Iris t . o r g C 3 o 5 n t r o l I P 4 Compare: - Test IP vs Control IP Control - HTTP content hashes Resolvers - TLS certificates - ASN and AS Name etc. 16

  17. Satellite Scale, Coverage and Ethics More than 8.2 million OpenDNS resolvers in 232 countries ● To reduce risk, we want to choose infrastructural resolvers ● We use resolvers with a valid PTR record beginning with the subdomain ● ns[0-9]* or nameserver[0-9]* → Likely to be part of big organizations 30k resolvers in ~4,500 ASes in 175 countries ● Stable DNS resolvers allow us to repetitively run measurements over time ● 17

  18. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 18

  19. Application-layer keyword blocking TCP Handshake GET https:// censoredplanet .org RST RST User Server 19

  20. TCP Handshake GET https:// ooni .org GET https:// ooni .org Measurement T C P E c h o Machine Quack S e r v e r An Echo service simply sends back to the originating source any data it receives. 20

  21. TCP Handshake GET https:// censoredplanet .org GET https:// censoredplanet .org Measurement T C P E c h o Machine Inject Inject Quack S e r v e r 33,000 usable Echo Servers in ~2,800 ASes in 166 countries 21

  22. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack 22

  23. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack 23

  24. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://ooni.org 24

  25. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://censoredplanet.org 25

  26. 104.198.14.52 Measurement TCP Handshake Web Server Machine Hyperquack GET https://torproject.org 26

  27. Measurement Web Server TCP Handshake Machine template of server Build Canonical GET http:// example{1,2,3} .com Hyperquack HTTP reply response (e.g., Status Code: 302 Found) 27

  28. Measurement Web Server TCP Handshake Machine template of server Build Canonical GET http:// example{1,2,3} .com Hyperquack HTTP reply response (e.g., Status Code: 302 Found) GET http:// censoredplanet .org different from Response Inject Canonical Template : Censorship 28

  29. Hyperquack Scale, Coverage and Ethics More than 50 million web servers (all around the world) ● To reduce risk, we want to choose infrastructural vantage points ● Use web servers that produce a valid EV certificate, as they are more likely ● to be organizational After filtering for capacity, we regularly use 30k web servers in ~3,800 ASes ● in 191 countries 29

  30. Remote Measurement Techniques Satellite and Iris 1 Measure DNS manipulation using Open DNS resolvers Quack and Hyperquack 2 Measure application-layer keyword censorship using Echo and HTTP(S) servers Spooky Scan and Augur 3 Measure global TCP/IP blocking using IP ID side channels 30

  31. Satellite & Iris Quack & Hyperquack Spooky Scan & Augur 31

  32. The Censored Planet Observatory uses Censored Planet remote measurement tools to scalably, Observatory ethically and continuously measure different kinds of global Internet censorship 32

  33. Censored Planet Observatory Launched in August 2018 and running continuously since ● Continuous baseline of reachability data for 2000 sensitive domains ● and IP addresses (From Alexa and Citizen Lab) each week More than 95,000 vantage points in 221 countries and territories ● (updated every week) Rapid focus capabilities to analyze censorship events in detail ● 33

  34. 25 billion Measurements over 22 Months 221 countries 42%-360% increase compared to OONI, ICLab 8 ASes (median) /country Median increase of 4-7 ASes per country 34

  35. Vantage Points in March 2020 (Scale 1 - 29,617) 35

  36. Number of vantage points Vantage Points over time 36

  37. Identifying Network Censorship Devices Censored Planet data identified the deployments of many network censorship devices Publication - Measuring the Deployment of Network Censorship Filters at Global Scale; R. Sundara Raman, A. Stoll, J. Dalek, R. Ramesh, W. Scott, and R. Ensafi; Network and Distributed System Security Symposium (NDSS), 2020 37

  38. Investigating Russia’s Censorship Model Censored Planet helped investigate large-scale ISP specific blocking of online resources in Russia’s authoritative blocklist . Publication - Decentralized Control: A Case Study of Russia; R. Ramesh, R. Sundara Raman, M. Bernhard, V. Ongkowikaya, L. Evdokimov, A. Edmundson, S. Sprecher, M. Ikram, and R. Ensafi; Network and Distributed System Security Symposium (NDSS), 2020 38

  39. Complementing Direct Measurements Censored Planet can complement in-depth direct measurements by providing higher scale. Censored Planet data confirmed OONI’s observation about the blocking of abortion rights websites. Report - https://ooni.org/post/2019-blocking-abortion-right s-websites-women-on-waves-web/ 39

  40. Censored Planet’s Rapid Focus Kazakhstan’s HTTPS interception https://censoredplanet.org/kazakhstan 40

  41. Kazakhstan’s National TLS Interception July 17, 2019 : Government ● started intercepting large fraction of HTTPS traffjc within its borders. Local ISPs told to instruct users ● to install a government-issued certificate on all devices and in every browser. 41

  42. How the interception works 42

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 , Michael Endl 3 ,

30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 , Michael Endl 3 ,

Twenty years of giant exoplanets - Proceedings of the Haute Provence Observatory Colloquium, 5-9 October 2015 Edited by I. Boisse, O. Demangeon, F. Bouchy & L. Arnold 30 Years of the McDonald Observatory Planet Search Paul Robertson 1 , 2 , 3 ,

78 views • 5 slides
Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018

Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018

Censored Planet: Measuring Internet Censorship Globally and Continuously Roya Ensafi AIMS 2018 1 Measuring Internet Censorship Globally PROBLEM: - How can we detect whether pairs of hosts around the world can talk to each other? user ?

780 views • 49 slides
own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial

own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial

Trio Sci Cymru Design your own Planet Image Source: NASA What makes a planet a planet? There are 3 rules for a celestial object to be classified as a planet 1. It must orbit a star. 2. It must have enough mass that its rounded by its own

338 views • 15 slides
Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University

Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University

Which Websites are Censored, Anyway? Zachary Weinberg zackw@cmu.edu Carnegie Mellon University 17 July 2014 Sources Herdict , 20092014: 65,000 URLs reported as inaccessible (not necessarily censored) by users worldwide Citizen Lab ,

359 views • 7 slides
Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 , J. Schneider 2 , P.

Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 , J. Schneider 2 , P.

Twenty years of giant exoplanets - Proceedings of the Haute Provence Observatory Colloquium, 5-9 October 2015 Edited by I. Boisse, O. Demangeon, F. Bouchy & L. Arnold Pre-history of planet detections Focus on transits 1620 - 1995 D. Briot 1 ,

417 views • 4 slides
There is no Planet B. We only have one Earth. We only get one chance. We need to keep in

There is no Planet B. We only have one Earth. We only get one chance. We need to keep in

There is no Planet B. We only have one Earth. We only get one chance. We need to keep in mind the nature of our larger problem. https://environmentaljusticetv.wordpress.com/2012/08/16/people- Tim Weiskel - 2 and-planet-speech-only/

839 views • 59 slides
Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018

Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018

Planet 13 Holdings Inc. Corporate Presentation Planet 13 Holdings Inc. 1 1 September 2018 DISCLAIMER This confidential presentation has been prepared by Planet 13 Holdings Inc. (Planet 13 Holdings or the Company) solely fo r

430 views • 17 slides
Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation

Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation

GP Regression with Censored Data using EP Gaussian Process Regression with Perry Groot , Peter Lucas Censored Data Using Expectation Introduction Propagation Problem Setting Bayesian Framework Perry Groot , Peter Lucas Prior - GPs

554 views • 17 slides
Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET

Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET

Welcome! Developed by the PLANET MassCONECT Team, 2018 Funded by NCI (U54 CA156732) PLANET MassCONECT U54 Outreach Core of the U54 Partnership What we ask Training Engagement Toolkit Surveys Technical assistance What we provide Online

767 views • 51 slides
Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia,

Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia,

Rigorous Global Optimization of Impulsive Planet-to-Planet Transfers R. Armellin, P. Di Lizia, Politecnico di Milano K. Makino, M. Berz Michigan State University 5th International Workshop on Taylor Model Methods Toronto, May 20 23, 2008

308 views • 28 slides
The heteroscedastic odd log-logistic generalized gamma regression model for censored data F

The heteroscedastic odd log-logistic generalized gamma regression model for censored data F

The heteroscedastic odd log-logistic generalized gamma regression model for censored data F abio Prataviera Edwin M. M. Ortega Gauss M. Cordeiro Altemir da Silva Braga VIII - Encontro dos Alunos da P os Gradua c ao em Estat

865 views • 39 slides
Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of

Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of

Compstat2010, Paris, August 2227 Censored Survival Data: Simulation and Kernel Estimates Ji r Zelinka Department of Mathematics and Statistics Faculty of Science, Masaryk University Brno, Czech Republic Supported by M SMT

275 views • 23 slides
Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing

Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing

Accurate Regression Parameters and Summary Statistics Estimation in Data with Censored Missing Values Yuliya Karpievitch Imputation And Censored Values Yuliya Karpievitch Missing Values and Imputation Some algorithms expect a

531 views • 16 slides
Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels

Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels

Machine Learning for Healthcare 6.871, HST.956 Lecture 5: Learning with noisy or censored labels David Sontag Course announcements No recitation this Friday, but will be an extra office instead (2pm, 1-390) Problem set 1 due Mon Feb 24

419 views • 30 slides
Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2.

Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2.

Cooling the Planet Cooling the Planet Investor Meet March, 2019 Cooling the Planet 1. Company Introduction 2. Business Outlook 2. Subros Business 4. Past Performance and Future Plan 2 Cooling the Planet Cooling the Planet About Subros

645 views • 41 slides
Characterizing uncertainty of the exposure point concentration based on left-censored data

Characterizing uncertainty of the exposure point concentration based on left-censored data

1 Characterizing uncertainty of the exposure point concentration based on left-censored data Niloofar Shoari PhD candidate Jean-Sbastien Dub, Ph.D Department of Construction Engineering 27 April 2016 Montreal, Canada 2 What are

767 views • 18 slides
Vertical EP at Marui & KEK November 2016 TTC High-Gradient WG Meeting T Saeki KEK V

Vertical EP at Marui & KEK November 2016 TTC High-Gradient WG Meeting T Saeki KEK V

Vertical EP at Marui & KEK November 2016 TTC High-Gradient WG Meeting T Saeki KEK V Chouhan, Y Ida, K Ishimi, K Nii & T Yamaguchi (Marui Galvanizing Co., Ltd., Japan) H Hayano, S Kato, H Monjushiro & M Sawabe (KEK, Japan) V

588 views • 25 slides
Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part

Security Biometric identification Markus Kuhn Computer Laboratory Michaelmas 2003 Part II Identification and authentication Recognition: Selection from a set of known identities Verification: confirming or denying a claimed

320 views • 10 slides
Tidy data Tidy datasets are all alike but every messy dataset is messy in its own way

Tidy data Tidy datasets are all alike but every messy dataset is messy in its own way

Tidy data Tidy datasets are all alike but every messy dataset is messy in its own way Hadley Wickham Tidy data Three rules: 1. Each variable forms a column 2. Each observation forms a row 3. Each type of observational unit forms a

851 views • 33 slides
Best Practices for Multilingual Linked Open Data Jose Emilio Labra Gayo University of Oviedo,

Best Practices for Multilingual Linked Open Data Jose Emilio Labra Gayo University of Oviedo,

Best Practices for Multilingual Linked Open Data Jose Emilio Labra Gayo University of Oviedo, Spain http://www.di.uniovi.es/~labra About me WESO Research Group ( Web Semantics Oviedo, since 2004 ) Several projects involving Multilingual LOD

845 views • 39 slides
CS 330 - Artificial Intelligent - Review & Practical AI Instructor: Renzhi Cao Computer

CS 330 - Artificial Intelligent - Review & Practical AI Instructor: Renzhi Cao Computer

1 CS 330 - Artificial Intelligent - Review & Practical AI Instructor: Renzhi Cao Computer Science Department Pacific Lutheran University Fall 2019 Announcement Review on decision tree homework Reading materials posted on course

149 views • 12 slides
Communities of Interest (CoIs): Learning through the Interaction of Multiple Knowledge Systems

Communities of Interest (CoIs): Learning through the Interaction of Multiple Knowledge Systems

Wisdom is not the product of schooling but the lifelong attempt to acquire it. - Albert Einstein Communities of Interest (CoIs): Learning through the Interaction of Multiple Knowledge Systems Gerhard Fischer Center for LifeLong Learning &

518 views • 32 slides
Observing M 31 with VERITAS R. Bird (UCD Dublin) 1 for the VERITAS Collaboration 2 1.

Observing M 31 with VERITAS R. Bird (UCD Dublin) 1 for the VERITAS Collaboration 2 1.

Observing M 31 with VERITAS R. Bird (UCD Dublin) 1 for the VERITAS Collaboration 2 1. ralph.bird@ucdconnect.ie 2. http://veritas.sao.arizona.edu/ M 31 - a well-studied object ISM rich Star Forming Ring A testbed for diffuse VHE gamma-ray

335 views • 20 slides
CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng

CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng

CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng Spring 2020 Previous Class Credentials Something you know (Knowledge factors) Something you have (Possession factors) Something

506 views • 24 slides

More recommend