encrypted dns privacy
play

Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra - PowerPoint PPT Presentation

Jul 07, 2023 •115 likes •533 views

Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra Siby, Marc Juarez, Claudia Diaz, Narseo Vallina-Rodriguez, Carmela Troncoso NDSS, 25 February 2020 Encrypted DNS > Privacy? Can encrypting DNS protect users from tra ffi

  1. Encrypted DNS Privacy? A Traffic Analysis Perspective Sandra Siby, Marc Juarez, Claudia Diaz, Narseo Vallina-Rodriguez, Carmela Troncoso NDSS, 25 February 2020

  2. Encrypted DNS —> Privacy? Can encrypting DNS protect users from tra ffi c- analysis based monitoring and censoring? We conducted a number of experiments that show that: • Monitoring and censorship are feasible even when DNS is encrypted. • Current proposed EDNS0-based countermeasures are not su ffi cient to prevent tra ffi c analysis attacks. � 2

  3. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Host � 3

  4. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 4

  5. The Past google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 5

  6. Encrypted DNS DNS-over-TLS (DoT) google.com? DNS-over-HTTPS (DoH) Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 6

  7. Encrypted DNS google.com? Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 7

  8. Scenario DNS-over-HTTPS tra ffi c Client Recursive Resolver Adversary Goal: Determine webpage visited by the client from DNS-over-HTTPS tra ffi c. � 8

  9. Key Idea A webpage visit can have multiple DNS queries/ responses associated with it, which could be a fingerprint for identification of that webpage. � 9

  10. Scenario DNS-over-HTTPS tra ffi c Client Recursive Resolver Adversary Directionality Size { Headers Timing � 10

  11. Training DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 11

  12. Training DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary N-gram features 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 12

  13. Our experiment setup DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary Selenium + 1. Collect traces 2. Extract tra ffi c features 3. Train model on features � 13

  14. Adversary Goal 1: Monitoring Closed World Experiment Set of webpages visited by user Which particular webpage did the user visit? Set of webpages known to the adversary � 14

  15. Adversary Goal 1: Monitoring Closed World Experiment Set of webpages visited by user ~90% Precision and Recall Set of webpages known to the adversary 1,500 pages � 15

  16. Adversary Goal 1: Monitoring Open World Experiment Set of webpages visited by user Did the user visit a page in the monitored set? Set of webpages monitored by adversary � 16

  17. Adversary Goal 1: Monitoring Open World Experiment Set of webpages visited by user ~70% Precision and Recall Set of webpages monitored by adversary 50 pages 5,000 pages � 17

  18. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Study the uniqueness of DoH tra ffi c when only the first L TLS records have been observed (set of 5,000 pages). � 18

  19. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Adversary strategy: Block on first query? ‣ 4th record usually corresponds to first DoH query. ‣ Blocking prevents user from loading the page. ‣ Could result in high collateral damage — pages with same domain name lengths are also blocked! ‣ Iran: Blocking domain length = 13 blocks 97 domains in the censored website list, but also blocks ~86,000 domains in the Alexa top 1M list � 19

  20. Robustness of attack Adversary’s training setup DNS-over-HTTPS tra ffi c Client Recursive Resolver Visit webpage Adversary Selenium + What happens when any of the parameters in this setup change? � 20

  21. Robustness of attack: Parameters Location Infrastructure Time • Resolver (Dynamic Nature of • Client websites) • Platform � 21

  22. Robustness of attack: Results ‣ Changes in scenario a ff ect attack ‣ Adversary needs classifier tailored to scenario for best results � 22

  23. Monitoring and Censorship are feasible even when DNS tra ffi c is encrypted. Website fingerprinting using DNS traces requires ~100 times less data than traditional website fingerprinting. Countermeasures? � 23

  24. EDNS0 Based Countermeasures EDNS0: Extension mechanisms for DNS, specifies a padding option 1 Padding of DNS queries: We implemented the recommended padding strategy 2 on Cloudflare’s DoH client. Pad query to multiples of 128 bytes. Query with padding Client Resolver Pad query 1 RFC7830 2 RFC8467 � 24

  25. EDNS0 Based Countermeasures Padding of DNS responses: Cloudflare’s resolver pads responses to multiples of 128 bytes. Recommended strategy: Pad to multiples of 468 bytes Response with padding Client Resolver Pad response � 25

  26. Our experiments Cloudflare’s response padding EDNS0-128 strategy Recommended response padding EDNS0-468 strategy Perfect Padding Keep all TLS record sizes constant EDNS0-128-adblock User-side measure (ad-blocker usage) DNS over Tor Cloudflare’s DNS over Tor service � 26

  27. Results: Countermeasure comparison 90 70 45 34 0.001 7 3.5 � 27

  28. Results: DNS over Tor 90 Fixed cell sizes 70 Repacketization 45 34 0.001 7 3.5 � 28

  29. Results: Overhead Sent + received bytes (from TLS records) � 29

  30. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) DNS-over-TLS (DoT) google.com? DNS-over-HTTPS (DoH) Query: google.com? google.com? g o o g l e . c Recursive o Client Response: m ? Resolver 172.217.168.4 Name Servers HTTP requests and responses Destination 172.217.168.4 Encrypted Host � 30

  31. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) We reran the classification process with DoT tra ffi c Using DoT leads to ~40% Precision and Recall (compared to ~90% for DoH) � 31

  32. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) We reran the classification process with DoT tra ffi c Using DoT leads to ~40% Precision and Recall (compared to ~90% for DoH) DoT tra ffi c looks di ff erent from DoH tra ffi c Does tra ffi c variability account for better protection in DoT? � 32

  33. Ongoing/Next Steps Realistic scenarios • Data pollution (Multi-tab browsing, background apps) • Caching Countermeasures • Padding + repacketization measures — Can we achieve protection without using Tor? � 33

  34. Summary • Surveillance and DNS-based censorship can occur even in the presence of encrypted DNS. • Current proposed EDNS0 based countermeasures are not su ffi cient. • Recommendation: Repacketization and padding Code and datasets at: https://github.com/spring-epfl/doh_tra ffi c_analysis Get in touch: sandra.siby@epfl.ch @sansib � 34

  35. BACKUP � 35

  36. Feature extraction TLS record sizes pcap 24 -58 63 110 -92 -86 -55 file Burst sizes Single record sizes 24 -58 173 -233 Uni-grams: (24), (-58)…. Uni-grams: (24), (-58)… Bi-grams: (24, -58), (-58, 63)… Bi-grams: (24, -58), (-58, 173)… Counts � 36

  37. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Consequences of blocking based on domain length Minimum collateral damage Censor blocking strategy Maximum censor gain Most popular website � 37

  38. Adversary Goal 2: Censorship Censoring adversary: Identify webpages as fast as possible Adversary strategy: High confidence guessing? ‣ By 15th record (15% of trace), adversary can guess with high confidence. ‣ Less collateral damage. � 38

  39. DNS over Tor Clusters in confusion graph? Fixed cell sizes • A ff ect size features Repacketization • A ff ect directionality features Pages in a cluster are misclassified as each other Confusion graph of misclassified labels � 39

  40. DNS-over-HTTPS (DoH) vs DNS-over-TLS (DoT) DoT tra ffi c looks di ff erent from DoH tra ffi c: • Only DNS Type A records (compared to Type A and Type AAAA in DoH) • Even after removal of AAAA tra ffi c, smaller number of records in DoT (more ‘bare-bones’ than DoH) • Larger record size in DoT Does this tra ffi c variability account for better protection in DoT? � 40

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Motivation Two-Cloud Setting PP k NN Classification Conclusion and Future Research Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security Yousef M. Elmehdwi Department of Mathematics and Computer

919 views • 19 slides
Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical

Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical

Review Review Course Overview Privacy Querying Published data, Encrypted Data yp Statistical databases Statistical databases, Differential privacy, Location-based privacy Encryption E ti Insider Threat/ DBMS Steganographic Intrusion

394 views • 24 slides
Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini

Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini

Privacy-preserving entity resolution and logistic regression on encrypted data Giorgio Patrini & Mentari Djatmiko, Stephen Hardy, Wilko Henecka, Hamish Ivey-Law, Maximilian Ott, Huy Pham, Guillaume Smith, Brian Thorne, Dongyao Wu N1

1.04k views • 37 slides
The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th

The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th

The Cloud Computations on Encrypted Data and Privacy David Pointcheval CNRS - ENS - INRIA 11th International Conference on Provable Security Xian, China - October 23rd, 2017 David Pointcheval Introduction 2 / 26 Anything from Anywhere

103 views • 7 slides
Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick

Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick

Privacy-Enhanced Search Privacy-Enhanced Searches Using Encrypted Bloom Filters Steven M. Bellovin Bill Cheswick smb@research.att.com ches@lumeta.com AT&T Labs Research Lumeta Corp. 1 Steven M. Bellovin March

886 views • 13 slides
Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy Technology Development Cybernetica dan@cyber.ee The Sharemind Privacy-preserving Computing Platform Components for Privacy Encrypted Privacy

714 views • 28 slides
TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1

TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1

TLS 1.3 Encrypted SNI ekr: ekr@rtfm.com dkg: dkg@aclu.org IETF 94 TLS 1.3 Encrypted SNI 1 DISCLAIMER: THIS IS NOT FULLY-BAKED We just fleshed out this idea yesterday, so its hand-wavy. Insufficient analysis has been done. IETF 94 TLS 1.3

886 views • 11 slides
CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit:

CS573 Data Privacy and Security CryptDB: Protecting Confidentiality with Encrypted Query Processing Li Xiong Slides credit: Raluca Ada Popa, Catherine M. S. Redfield, Nickolai Zeldovich, and Hari Balakrishnan MIT CSAIL Problem Confidential

576 views • 31 slides
Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model

Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model

Lower Bounds for Encrypted Multi-Maps and Searchable Encryption in the Leakage Cell Probe Model Sarvar Patel*, Giuseppe Persiano** and Kevin Yeo* *Google **University of Salerno Key k i was queried. Privacy-Preserving Storage Protocols Key k i

1.11k views • 81 slides
Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng

Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng

Secure Skyline Queries on Encrypted Data CS 573 Data Privacy and Security Jinfei Liu, Juncheng Yang, Li Xiong, and Jian Pei. Secure Skyline Queries on Cloud Platform. ICDE 2017. Jinfei Liu, Juncheng Yang, Li Xiong, and Jian Pei. Secure and

1.1k views • 72 slides
Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah

Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah

Improved Reconstruction Attacks on Encrypted Data Using Range Query Leakage Marie-Sarah Lacharit, Brice Minaud , Kenny Paterson Information Security Group IEEE Symposium on Security and Privacy, May 21, 2018 Outsourcing Data with Search

654 views • 62 slides
BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is

BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is

BIOCODED On-premise encrypted text, multimedia and voice communication Product by BIOCODED is a solution that provides privacy for your communication needs. Biocoded is independent of network operators. Requires data network/internet access to

567 views • 27 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted

CS573 Data Privacy and Security Secure Outsourcing Computation Li Xiong Outline Cloud computing Computing on encrypted data Homomorphic encryption What is Cloud Computing ? Cloud computing Type of computing that relies on sharing

1.29k views • 62 slides
Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted

Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted

Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted Applications Learnings From Etesync Applications Learnings From Etesync stosb.com/talks Tom Hacohen tom@stosb.com FOSDEM 2019 @TomHacohen

361 views • 32 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
WHEN PARENTS AND CHILDREN DISAGREE: DIVING INTO DNS DELEGATION INCONSISTENCY The Domain Name

WHEN PARENTS AND CHILDREN DISAGREE: DIVING INTO DNS DELEGATION INCONSISTENCY The Domain Name

WHEN PARENTS AND CHILDREN DISAGREE: DIVING INTO DNS DELEGATION INCONSISTENCY The Domain Name System (DNS) is one of the most critical components of the Internet DNS is a distributed, hierarchical database DNS maps hosts, services and

866 views • 31 slides
Unbound & FreeBSD A true love story (at the end of November 2013) 1 Presentation for

Unbound & FreeBSD A true love story (at the end of November 2013) 1 Presentation for

Unbound & FreeBSD A true love story (at the end of November 2013) 1 Presentation for EUROBSDCON 2019 Conference September 19-22, 2019 Lillehammer, Norway 2 About me: Pablo Carboni (42) , from Buenos Aires, Argentina. Worked as Unix

453 views • 31 slides
Internet Technology 15. VoIP, NAT Traversal, and auto configuration Paul Krzyzanowski Rutgers

Internet Technology 15. VoIP, NAT Traversal, and auto configuration Paul Krzyzanowski Rutgers

Internet Technology 15. VoIP, NAT Traversal, and auto configuration Paul Krzyzanowski Rutgers University Spring 2016 1 Session Initiation Protocol (SIP) Dominant protocol for Voice over IP (VoIP): RFC 3261 Allows a call to be

651 views • 43 slides
An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come? Chaoyi Lu ,

An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come? Chaoyi Lu ,

An End-to-End, Large-Scale Measurement of DNS-over-Encryption: How Far Have We Come? Chaoyi Lu , Baojun Liu, Zhou Li, Shuang Hao, Haixin Duan, Mingming Zhang, Chunying Leng, Ying Liu, Zaifeng Zhang, Jianping Wu The start of Internet activities.

721 views • 37 slides
A novel zone walking protection for secure DNS Server Arnob Paul, Md. Hasanul Islam, Md. Shohrab

A novel zone walking protection for secure DNS Server Arnob Paul, Md. Hasanul Islam, Md. Shohrab

A novel zone walking protection for secure DNS Server Arnob Paul, Md. Hasanul Islam, Md. Shohrab Hossain Bangladesh University of Engineering and Technology, Bangladesh & Husnu S. Narman, Marshall University, Huntington, WV, USA

769 views • 27 slides
CS615 - Aspects of System Administration DNS; HTTP Department of Computer Science Stevens

CS615 - Aspects of System Administration DNS; HTTP Department of Computer Science Stevens

CS615 - Aspects of System Administration Slide 1 CS615 - Aspects of System Administration DNS; HTTP Department of Computer Science Stevens Institute of Technology Jan Schaumann jschauma@stevens-tech.edu

867 views • 86 slides
DNS Performance and the Effectiveness of Caching Jaeyeon Jung, Emil Sit, Hari Balakrishnan,

DNS Performance and the Effectiveness of Caching Jaeyeon Jung, Emil Sit, Hari Balakrishnan,

DNS Performance and the Effectiveness of Caching Jaeyeon Jung, Emil Sit, Hari Balakrishnan, Robert Morris Presenter: Gigis Petros Introduction Two factors contribute to the scalability of DNS hierarchical design around delegated name

583 views • 29 slides
DNS-BASED THREAT HUNTING: learn, share and improve. repeat. Joo Collier de Mendona @sec_joao

DNS-BASED THREAT HUNTING: learn, share and improve. repeat. Joo Collier de Mendona @sec_joao

TLP WHITE DNS-BASED THREAT HUNTING: learn, share and improve. repeat. Joo Collier de Mendona @sec_joao Zurich, September 2016. $ whoami Brazilian living in Germany for a long time Since 2010 at Deutsche Telekom CERT / CDC

643 views • 27 slides

More recommend