deltashaper
play

DeltaShaper Enabling Unobservable Censorship- resistant TCP - PowerPoint PPT Presentation

Oct 20, 2022 •165 likes •468 views

DeltaShaper Enabling Unobservable Censorship- resistant TCP Tunneling over Videoconferencing Streams Diogo Barradas Nuno Santos Lus Rodrigues INESC-ID, Instituto Superior Tcnico, Universidade de Lisboa

  1. DeltaShaper Enabling Unobservable Censorship- resistant TCP Tunneling over Videoconferencing Streams Diogo Barradas Nuno Santos Luís Rodrigues INESC-ID, Instituto Superior Técnico, Universidade de Lisboa

  2. Censors monitor / control Internet access Censored Region Uncensored Region 2/29

  3. Censors monitor / control Internet access Censored Region Uncensored Region 3/29

  4. Censors attempt to block covert channels Censored Region Uncensored Region 4/29

  5. DeltaShaper • Goals • Establish a covert TCP/IP channel • Maintain unobservability • Resist against network perturbations Censored Region Uncensored Region 5/29

  6. Multimedia protocol tunneling Security Coverage System / Properties Active/Passive Arbitrary Data Interactive Attack Resistance Transmission Communication ✔ ✔ FreeWave - (Houmansadr et al.) Audio Modulation ✔ Facet - - (Li et al.) Video Embedding ✔ ✔ CovertCast - (McPherson et al.) Video Modulation ✔ ✔ ✔ DeltaShaper 6/30 Video Modulation

  7. Threat model • Assumptions: • Packets carrying multimedia data are encrypted • Censor’s Capabilities: • Deep Packet Inspection • Observe, store and analyze traffic flows • Apply artificial constraints on the network • Censor’s Limitations: • Unable to decipher the content of Skype packets • Not in collusion with the video-conferencing provider • Attempts to minimize collateral damage 7/29

  8. A naïve approach at data modulation • Replace chat video frames • Encode data in all available pixels 480 px 1px = 24b R = 8b G = 8b B = 8b ~922 kB / frame 640 px 8/29

  9. Drawbacks of naïve data modulation • Data loss • Lossy compression (downsampling + quantization) • Abnormal traffic patterns • Poor compression (spatial & inter-frame redundancy) 1px = 24b 480 px R = 8b G = 8b B = 8b ~922 kB / frame 640 px 9/29

  10. C1: Can we distinguish regular from irregular Skype streams? • Traffic signatures appear to be different • Packet lengths frequency distribution Frames change extensively Frames do not change 10/29

  11. C2: How much throughput can we achieve while preserving unobservability? Poor Unobservability High Throughput Good Unobservability Low Throughput Censored Region Uncensored Region 11/29

  12. C3: How to maintain unobservability in adverse network conditions? Ideal conditions Good unobservability Perturbed conditions Poor unobservability Censored Region Censored Region Uncensored Region Uncensored Region 12/29

  13. Contributions • DeltaShaper : A censorship-resistant system • Tunnel TCP/IP data over Skype videocalls • Distinguish regular / irregular Skype call streams • Packet frequency distribution / EMD • Maximize throughput and maintain unobservability • Explore the space encoding parameters • Adaptation to network conditions • Dynamic calibration of encoding parameters 13/29

  14. How to characterize Skype streams? • Characteristic Function - Create a stream signature • Frequency distribution of packet lengths • Similarity Function - Quantify streams’ differences • Earth Mover’s Distance (EMD) 14/29

  15. Different videos generate distinct traffic • Differences between signatures can be quantified • Earth Movers ’ Distance EMD > 0.50 EMD = 0.05 EMD > 0.50 15/29

  16. Different videos generate distinct traffic • Censors can identify streams with unusual traffic EMD > Δ Flagged EMD < Δ Regular Call EMD > Δ Flagged Δ = 0.06 16/29

  17. Can we encode data and maintain unobservability? • Strawman: Embed a small payload in each frame • Generated traffic does not reflect this embedding EMD < Δ Regular Call EMD < Δ Regular Call EMD < Δ Regular Call 17/29

  18. A better approach for data modulation • Strive for unobservability • Accommodate for lossy compression + = (b) Payload Frame (a) Carrier Frame (c) Covert Frame Parameter Description a p payload frame area (pixel×pixel) a c cell size (pixel×pixel) b c color encoding (bits) r p payload frame rate (frames/s) 18/29

  19. Adapt to network conditions • Calibrate encoding parameters • Maintain unobservability • Modulate max. amount of data 19/29

  20. DeltaShaper adaptation mechanism • Periodically: • Estimate network conditions from recorded baselines • Select adequate parameters from pre-computed table Cond. 2 Cond. n Cond.1 Which set … is closest? … Carrier signature … … a p 1 a p 2 a p n Encoding a c 1 a c 2 a c n parameters b c 1 b c n b c 2 r p 1 r p n r p 2 20/29

  21. Implementation challenges • Network interaction • Allow transparent TCP/IP communication • Video processing • Combine carrier / payload frames • Video-conferencing software as a black-box • Send covert frames without modifying Skype 21/29

  22. DeltaShaper client module Client Endpoint Payload Carrier Network Encoder Frame Queue Frame Covert Namespace Adapter Stream Client Application Payload Payload Carrier Streamer Encoder Streamer VETH1 Virtual Camera IP Packet 10.10.10.10 /dev/video0 Queue Stream Blender (Snowmix) Kernel Module VETH0 10.10.10.11 Linux Kernel FFMPEG 22/29

  23. DeltaShaper server module Server Endpoint Covert Stream Receiver Payload Fragment Server Process Pool Application Worker Photo Worker Thread Decoder Display Localhost Thread Thread Framebuffer Thread interface Linux Kernel XWD 23/29

  24. Evaluation Steps 1. Can we distinguish Skype streams? 2. Can we balance throughput and unobservability? 3. How well does DeltaShaper perform? 24/29

  25. Can we distinguish Skype streams? These streams seem to be strange... I’ll block them. • 83% accuracy in distinguishing Skype streams • DeltaShaper streams must remain under Δ I 25/29

  26. Can we balance throughput and unobservability? Parameter Description Configuration a p payload frame area (pixel×pixel) 320 x 240 a c cell size (pixel×pixel) 8 x 8 b c color encoding (bits) 6 r p payload frame rate (frames/s) 1 26/29

  27. How well does DeltaShaper perform? • Achieved configuration: Parameter Description Configuration a p payload frame area (pixel×pixel) 320 x 240 a c cell size (pixel×pixel) 8 x 8 b c color encoding (bits) 6 r p payload frame rate (frames/s) 1 • Performance • Raw throughput: 7.2 Kbps • Round-Trip-Time: 2s 973ms 27/29

  28. How well does DeltaShaper perform? Use Case Protocol Session W/ DS Protocol Session W/o DS Overhead (mm:ss) (mm:ss) Wget (4kB file) 0:22 < 0:01 3,142.9 x FTP (4kB file) 1:43 0:09 11.4 x SSH + SMTP 2:41 0:38 4.2 x SSH 1:29 0:06 14.8 x Telnet 1:13 0:06 12.2 x Netcat chat 0:01 < 0:01 166.7 x SSH Tunnel 2:19 0:22 6.3 x Non-interactive session Interactive session • DeltaShaper allows for the execution of traditional TCP/IP applications which cover different users ’ needs 28/29

  29. Conclusions • DeltaShaper: A censorship-resistant system • Supports high-latency / low-throughput TCP applications • Maximize throughput and preserve unobservability • Greedy exploration of encoding configurations • Adaptation in multimedia protocol tunneling • Provides improved unobservability • Could also enhance similar systems http://web.ist.utl.pt/diogo.barradas 29/29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Naive Bayes Classication Naive Bayes Classication In [1]: % matplotlib inline from

Naive Bayes Classication Naive Bayes Classication In [1]: % matplotlib inline from

Naive Bayes Classication Naive Bayes Classication In [1]: % matplotlib inline from matplotlib import pyplot as plt from IPython import display display.set_matplotlib_formats('svg') import mxnet as mx from mxnet import nd import numpy as np

213 views • 7 slides
Higher order rectifiability via Reifenberg theorems for sets and measures Silvia Ghinassi Stony

Higher order rectifiability via Reifenberg theorems for sets and measures Silvia Ghinassi Stony

Higher order rectifiability via Reifenberg theorems for sets and measures Silvia Ghinassi Stony Brook University March 24, 2019 AMS Spring Spring Central and Western Joint Sectional Meeting Special Session on Topics at the Interface of

566 views • 22 slides
Engineering Computation in Dr. Kyle Horne Department of Mechanical Engineering Spring, 2018

Engineering Computation in Dr. Kyle Horne Department of Mechanical Engineering Spring, 2018

Engineering Computation in Dr. Kyle Horne Department of Mechanical Engineering Spring, 2018 What is It? Explicit Implicit 140 120 100 Position y [px] 15 80 10 60 Position y [px] 5 40 0 20 5 20 40 60 80 100 120 140 240 r

830 views • 44 slides
A constructive Coq library for the mechanisation of undecidability Yannick Forster and Dominique

A constructive Coq library for the mechanisation of undecidability Yannick Forster and Dominique

A constructive Coq library for the mechanisation of undecidability Yannick Forster and Dominique Larchey-Wendling MLA 2019 March 13 saarland university computer science Y. Forster and D. Larchey-Wendling Coq library of undecidability MLA

1.32k views • 92 slides
Lecture 14 Jan-Willem van de Meent TOPIC MODELS Borrowing from : David Blei (Columbia)

Lecture 14 Jan-Willem van de Meent TOPIC MODELS Borrowing from : David Blei (Columbia)

Unsupervised Machine Learning and Data Mining DS 5230 / DS 4420 - Fall 2018 Lecture 14 Jan-Willem van de Meent TOPIC MODELS Borrowing from : David Blei (Columbia) Word Mixtures Idea: Model text as a mixture over words (ignore

899 views • 13 slides
Coding Theorems for Reversible Embedding Frans Willems and Ton Kalker T.U. Eindhoven, Philips

Coding Theorems for Reversible Embedding Frans Willems and Ton Kalker T.U. Eindhoven, Philips

Coding Theorems for Reversible Embedding Frans Willems and Ton Kalker T.U. Eindhoven, Philips Research DIMACS, March 16-19, 2003 Outline 1. Gelfand-Pinsker coding theorem 2. Noise-free embedding 3. Reversible embedding 4. Robust and

507 views • 33 slides
Higher Order Functions 1 Shell CSCE 314 TAMU Higher-order Functions A function is called

Higher Order Functions 1 Shell CSCE 314 TAMU Higher-order Functions A function is called

Shell CSCE 314 TAMU CSCE 314: Programming Languages Dr. Dylan Shell Higher Order Functions 1 Shell CSCE 314 TAMU Higher-order Functions A function is called higher-order if it takes a function as an argument or returns a function as a

262 views • 23 slides
Model Checking for Symbolic-Heap Separation Logic with Inductive Predicates James Brotherston 1

Model Checking for Symbolic-Heap Separation Logic with Inductive Predicates James Brotherston 1

. POPL 2016, St Petersburg, Florida, USA, 1 Programming Principles, Logic &amp; Verification Group Department of Computer Science, University College London 2 Foundations of Computing Group Department of Computer Science, Middlesex University

1.02k views • 62 slides
Computation-as-deduction in Abella: work in progress Kaustuv Chaudhuri, Ulysse G erard and Dale

Computation-as-deduction in Abella: work in progress Kaustuv Chaudhuri, Ulysse G erard and Dale

Computation-as-deduction in Abella: work in progress Kaustuv Chaudhuri, Ulysse G erard and Dale Miller LFMTP, July 7, 2018 Inria Saclay Palaiseau France Introduction Abella is an interactive theorem prover in which relations, and not

569 views • 23 slides
Installation Installation Procedures Procedures for Clusters for Clusters PART 2 NETBOOT

Installation Installation Procedures Procedures for Clusters for Clusters PART 2 NETBOOT

Moreno Baricevic CNR-INFM DEMOCRITOS Trieste, ITALY Installation Installation Procedures Procedures for Clusters for Clusters PART 2 NETBOOT Environment and Troubleshooting Agenda Agenda Cluster Services Overview on Installation

437 views • 21 slides
Build Your Cluster with Rocks Build Your Cluster with Rocks Yu Fu Yu Fu University of Florida

Build Your Cluster with Rocks Build Your Cluster with Rocks Yu Fu Yu Fu University of Florida

Build Your Cluster with Rocks Build Your Cluster with Rocks Yu Fu Yu Fu University of Florida University of Florida 2011 OSG Summer Workshop 2011 OSG Summer Workshop Lubbock, TX Lubbock, TX You need a cluster You need a cluster

653 views • 52 slides
Further Experiences Teaching an FPGA-based Embedded Systems Class Stephen A. Edwards Columbia

Further Experiences Teaching an FPGA-based Embedded Systems Class Stephen A. Edwards Columbia

Further Experiences Teaching an FPGA-based Embedded Systems Class Stephen A. Edwards Columbia University WESE, Torino, Italy, October 4, 2018 What is an FPGA? A Field Programmble Gate Array: A configurable circuit; not a stored-program

521 views • 14 slides
RHCSA - EX200 RHCSA DAY - 04 RHCSA Trainer Ali Aydemir CISCO, CCIE #47287 SP/RS, CCSI#35413

RHCSA - EX200 RHCSA DAY - 04 RHCSA Trainer Ali Aydemir CISCO, CCIE #47287 SP/RS, CCSI#35413

RHCSA RHCSA - EX200 RHCSA DAY - 04 RHCSA Trainer Ali Aydemir CISCO, CCIE #47287 SP/RS, CCSI#35413 AVAYA, ACE-Fx #169 HUAWEI, HCDP RHCSA DAY - 04 RHCSA RHCSA Timetable Day AM Lunch PM -Essential File Management -Installing RHEL

1.85k views • 165 slides
A short introduction to our new rx7620 1 December 1, 2005 Basic Properties 8 CPUs - 1.6GHz

A short introduction to our new rx7620 1 December 1, 2005 Basic Properties 8 CPUs - 1.6GHz

A short introduction to our new rx7620 1 December 1, 2005 Basic Properties 8 CPUs - 1.6GHz Itanium2 (6MB L3 cache) 8GB RAM 14 PCI-X slots ( o nly ~8GB/s total I/O) Supports hardware partitioning No VGA port access

273 views • 11 slides
Cluster Computing with OpenHPC Karl W. Schulz, Ph.D. Technical Project Lead, OpenHPC Community

Cluster Computing with OpenHPC Karl W. Schulz, Ph.D. Technical Project Lead, OpenHPC Community

http://openhpc.community Cluster Computing with OpenHPC Karl W. Schulz, Ph.D. Technical Project Lead, OpenHPC Community Scalable Datacenter Solutions Group, Intel HPC PCSYS YSPR PROS16 Workshop, SC16 November 14 ! Salt Lake City, Utah

697 views • 18 slides
RDMA over Commodity Ethernet at Scale Chuanxiong Guo, Haitao Wu, Zhong Deng, Gaurav Soni, Jianxi

RDMA over Commodity Ethernet at Scale Chuanxiong Guo, Haitao Wu, Zhong Deng, Gaurav Soni, Jianxi

RDMA over Commodity Ethernet at Scale Chuanxiong Guo, Haitao Wu, Zhong Deng, Gaurav Soni, Jianxi Ye, Jitendra Padhye, Marina Lipshteyn ACM SIGCOMM 2016 August 24 2016 Outline RDMA/RoCEv2 background DSCP-based PFC Safety challenges

462 views • 20 slides
Institutionalizing FreeBSD Isolated and Virtualized Hosts Using bsdinstall(8) , zfs(8) and nfsd(8)

Institutionalizing FreeBSD Isolated and Virtualized Hosts Using bsdinstall(8) , zfs(8) and nfsd(8)

Institutionalizing FreeBSD Isolated and Virtualized Hosts Using bsdinstall(8) , zfs(8) and nfsd(8) editor@callfortesting.org @MichaelDexter BSDCan 2018 Jails and bhyve FreeBSDs had Isolation since 2000 and Virtualization since 2014 Why

1.13k views • 76 slides
OpenBSD vmm/vmd Update Mike Larkin bhyvecon 2019 20 Mar 2019 Tokyo, Japan Agenda Where

OpenBSD vmm/vmd Update Mike Larkin bhyvecon 2019 20 Mar 2019 Tokyo, Japan Agenda Where

OpenBSD vmm/vmd Update Mike Larkin bhyvecon 2019 20 Mar 2019 Tokyo, Japan Agenda Where we were a year ago Current status Future plans Q&amp;A One Year Ago ... Reasonably complete support for OpenBSD and Linux guests

729 views • 47 slides
Overview of Distributed Computing signin.ritlug.com (pray it works!) Summary Data

Overview of Distributed Computing signin.ritlug.com (pray it works!) Summary Data

Overview of Distributed Computing signin.ritlug.com (pray it works!) Summary Data crunching (supercomputers) Rendering (render farms, Hollywood, Pixar, etc.) High availability (failover of things like web apps) Data

573 views • 19 slides
Scalability Testing of Kadeploy using Virtual Machines on Grid5000 Luc Sarzyniec, S

Scalability Testing of Kadeploy using Virtual Machines on Grid5000 Luc Sarzyniec, S

Scalability Testing of Kadeploy using Virtual Machines on Grid5000 Luc Sarzyniec, S ebastien Badia, Emmanuel Jeanvoine, Lucas Nussbaum Grid5000 Scalability testing of Kadeploy on Grid5000 1 / 10 Scalability Testing of Kadeploy

1.29k views • 45 slides
Xen-OSCAR: OSCAR Testing with Xen Geoffroy Vallee, Stephen L. Scott Oak Ridge National Laboratory

Xen-OSCAR: OSCAR Testing with Xen Geoffroy Vallee, Stephen L. Scott Oak Ridge National Laboratory

Xen-OSCAR: OSCAR Testing with Xen Geoffroy Vallee, Stephen L. Scott Oak Ridge National Laboratory Introduction OSCAR testing is difficult (for both OPKG and OSCAR core) need to setup a fresh head-node every time need to access

394 views • 18 slides
HPC @ UL &amp; new Trends in Europe and Abroad Path to Exascale Dr. Sebastien Varrette Oct. 24

HPC @ UL &amp; new Trends in Europe and Abroad Path to Exascale Dr. Sebastien Varrette Oct. 24

HPC @ UL &amp; new Trends in Europe and Abroad Path to Exascale Dr. Sebastien Varrette Oct. 24 th , 2017 University of Luxembourg (UL), Luxembourg Keynote, 8th Intl. SuperComputing Camp (SC-Camp 2017), Cadiz, Spain Dr. Sebastien Varrette

1.56k views • 70 slides
Automating Linux installations An introduction to Red Hat Kickstart and SUSE AutoYaST

Automating Linux installations An introduction to Red Hat Kickstart and SUSE AutoYaST

Automating Linux installations An introduction to Red Hat Kickstart and SUSE AutoYaST installation tools Agenda The manual install process (very brief) Network booting in a PC environment (very brief) PXE, DHCP, TFTP

494 views • 46 slides
Bare Metal DevOps Chris Read @cread Core Principles Agile Infrastructure Machines

Bare Metal DevOps Chris Read @cread Core Principles Agile Infrastructure Machines

Bare Metal DevOps Chris Read @cread Core Principles Agile Infrastructure Machines as Cattle Automation Communication GOTO Chicago @cread Agile Infrastructure Use configuration management! Test Rebuild

822 views • 19 slides

More recommend