traffic analysis
play

Traffic Analysis The Most Powerful and Least Understood Attack - PowerPoint PPT Presentation

Jan 03, 2023 •204 likes •355 views

Traffic Analysis The Most Powerful and Least Understood Attack Methods Raven Alder, Riccardo Bettati, Jon Callas, Nick Matthewson 1 What is Traffic Analysis? Signals intelligence that ignores content Information for analysis is the

  1. Traffic Analysis The Most Powerful and Least Understood Attack Methods Raven Alder, Riccardo Bettati, Jon Callas, Nick Matthewson 1

  2. What is Traffic Analysis? • Signals intelligence that ignores content • Information for analysis is the metadata • “Traffic analysis, not cryptanalysis, is the backbone of communications intelligence.” Susan Landau and Whitfield Diffie. 2

  3. Interesting Metadata • Endpoint addresses • Timing – Duration – Sequencing • Location? • etc. 3

  4. Why is it important? • The title of the panel says it all – We are going to startle you • Everyone needs to think differently – Often we’re protecting the wrong thing – TA shows the limits of possible defense • Potential for new research and creativity 4

  5. Historic Uses • Finding size, scope, intentions of military • Marketing research • Reconfigure networks 5

  6. Why do this? • Crypto • Too much data, already • It’s easier than analyzing everything • It’s hard to defend against 6

  7. Defenses • Include – Don’t communicate – Don’t be seen communicating • Spread Spectrum, etc. – Insert false communications • Naïve defenses often worse than nothing – Everything you know about this is wrong 7

  8. What can we do? • Determine alert status of military – Notorius “Domino’s Metric” • Identify authors of text – “Primary Colors” break against Joe Klein • Crack SSH passwords – Timing Analysis of Keystrokes and Timing Attacks on SSH [Usenix 2001] 8

  9. What more can we do? • Identify OS of remote hosts • Identify host as it moves around the net • Correlate virtual-to-physical hosts • Unravel mix nextworks 9

  10. What else can we do? • Remove text redacting – http://cryptome.org/cia-decrypt.htm • Identify movies being played – http://www.cs.washington.edu/research/security/ usenix07devices.pdf • Identify music being downloaded / played – CDDB finds albums with TA-like methods 10

  11. And even more • De-multiplex IPsec tunnels • Spatially locate hosts • Voice analysis of some speech patterns • Analysis of social networks • Google PageRank • nmap, p0f • Credit card fraud detection 11

  12. Open Questions? • How do we guard against TA? • How do we use TA? – Can it be used against spam, botnets? – Are there offensive and defensive uses? 12

  13. Additional Reading • “Introducing Traffic Analysis” by George Danezis – http://homes.esat.kuleuven.be/~gdanezis/TAIntro- book.pdf – http://homes.esat.kuleuven.be/~gdanezis/talks/TAIntro- prez.pdf – http://one.revver.com/watch/147903 13

  14. 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis

using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis

Website Fingerprinting using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis Wiki says What is Traffic Analysis Wiki says Process of intercepting and examining messages in order to deduce

1.15k views • 41 slides
Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin

Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin

Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin Netpy visualization with Wisconsin Netpy Cristian Estan, Garret Magin University of Wisconsin-Madison USENIX LISA, 19 December 2005 Traffic

345 views • 18 slides
1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop

1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop

AGENDA AGENDA 1. The role and significance of public transport and tram transport in urban areas 2. Goal and stages of the study 1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop stations at tram stops

169 views • 4 slides
Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue

Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue

Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue - Third Floor, Gaithersburg, MD 20878 Phone: (301) 670-4784 Fax: (301) 670-9187 Email: info@gl.com Website: http://www.gl.com 1 1 Traffic

228 views • 11 slides
ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and

ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and

ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and reporting Slavko Gajin slavko.gajin@ rcub.bg.ac.rs AMRES Academic Network of Serbia RCUB - Belgrade University Computer Center ETF

641 views • 46 slides
Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction

Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction

Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction Youve just invented the greatest protocol does everything including tying your shoelaces. What now? Need to know how it performs. Is it

510 views • 13 slides
High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges &

High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges &

High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges & Approaches Security: Challenges & Approaches C-DAC Asia-Pacific Advanced Network 32 nd Meeting, India Habitat Centre, New Delhi APAN 32nd Meeting,

647 views • 28 slides
my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA COLLECTION AND ANALYTICS There is a high demand for reliable Traffic Data but Static data single-purpose data Invasive costly deployment &

404 views • 18 slides
ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC

ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC

IN INTRODUCTION TO TRAFFIC ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC ANALYSIS 1. Except for user terminals, the telephone network is composed of a variety of common 45 Trunks equipment

385 views • 17 slides
Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Traffic Measurement Analysis & Robust Methods Modeling Anomaly Detection Traffic Classification Conclusion + Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon, Laboratoire de Physique (UMR

716 views • 60 slides
Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at

Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at

A presentation on Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at ICTCT workshop 2014 Karlsruhe, Germany 16 th Oct 2014 Presented by: Inder Pal MEEL ipmeel@gmail.com 2014-10-16 Contents

417 views • 29 slides
Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification,

Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification,

Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification, Measurement, and Analysis and Analysis ISC/CAIDA Data Collaboration Workshop October 22, 2012 David Plonka & Paul Barford

1.33k views • 26 slides
Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki

Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki

Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki (u-tokyo) Akira Kato (u-tokyo) Outline Macro-level residential user traffic traffic pattern and growth Flow-level residential user traffic

550 views • 24 slides
Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3

Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3

1 Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3 OVERVIEW TYPES OF TESTS HARDWARE SOFTWARE KEY FEATURES LEARN MORE 3 OVERVIEW Vulcan generates stateful Ethernet traffic to analyze how

349 views • 34 slides
Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6

Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6

1 Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6 3 OVERVIEW TYPES OF TESTS HARDWARE SOFTWARE AUTOMATION KEY FEATURES LEARN MORE 3 OVERVIEW Valkyrie is a full-featured stateless traffic

720 views • 43 slides
Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic

Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic

Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic Assignment Sven Maerivoet sven.maerivoet@esat.kuleuven.be Department of Electrical Engineering ESAT-SCD (SISTA) Katholieke Universiteit Leuven

526 views • 50 slides
A DOCUMENT SUMMARIZER FOR NOVICES REX RUBIN WHY A DOCUMENT SUMMARIZER? Getting into a field

A DOCUMENT SUMMARIZER FOR NOVICES REX RUBIN WHY A DOCUMENT SUMMARIZER? Getting into a field

A DOCUMENT SUMMARIZER FOR NOVICES REX RUBIN WHY A DOCUMENT SUMMARIZER? Getting into a field of research is: Daunting with the amount of information presented Difficult to discern what is important and what isnt How a

344 views • 19 slides
Effective Latent Space Graph-based Re-ranking Model with Global Consistency Hongbo Deng, Michael

Effective Latent Space Graph-based Re-ranking Model with Global Consistency Hongbo Deng, Michael

WSDM 2009 Effective Latent Space Graph-based Re-ranking Model with Global Consistency Hongbo Deng, Michael R. Lyu and Irwin King Department of Computer Science and Engineering The Chinese University of Hong Kong Feb. 12, 2009 1 Outline

493 views • 31 slides
WITH RAPIDS Joe Eaton, Ph.D. Technical Lead for Graph Analytics AGENDA Introduction - Why

WITH RAPIDS Joe Eaton, Ph.D. Technical Lead for Graph Analytics AGENDA Introduction - Why

ACCELERATING GRAPH ALGORITHMS WITH RAPIDS Joe Eaton, Ph.D. Technical Lead for Graph Analytics AGENDA Introduction - Why Graph Analytics? Graph Libraries - nvGraph and cuGraph Graph Algorithms - Whats New Conclusion -

678 views • 39 slides
NVGRAPH,FIREHOSE,PAGERANK GPU ACCELERATED ANALYTICS NOV 2016 Joe Eaton Ph.D. Accelerated

NVGRAPH,FIREHOSE,PAGERANK GPU ACCELERATED ANALYTICS NOV 2016 Joe Eaton Ph.D. Accelerated

NVGRAPH,FIREHOSE,PAGERANK GPU ACCELERATED ANALYTICS NOV 2016 Joe Eaton Ph.D. Accelerated Computing nvGRAPH New Features Coming Soon Agenda Dynamic Graphs GraphBLAS 2 ACCELERATED COMPUTING 10x Performance & 5x Energy Efficiency GPU

855 views • 23 slides
Kaleidoscope : Graph Analytics on Evolving Graphs Steffen Maass, Taesoo Kim Georgia Institute of

Kaleidoscope : Graph Analytics on Evolving Graphs Steffen Maass, Taesoo Kim Georgia Institute of

Kaleidoscope : Graph Analytics on Evolving Graphs Steffen Maass, Taesoo Kim Georgia Institute of Technology April 23, 2018 Steffen Maass Kaleidoscope : Evolving Graph Analytics April 23, 2018 1 / 7 About me 4th year PhD Student at Georgia

373 views • 8 slides
On Finding Power Method in Spreading Activation Search Jn Suchal Supervisor: Prof. Pavol

On Finding Power Method in Spreading Activation Search Jn Suchal Supervisor: Prof. Pavol

On Finding Power Method in Spreading Activation Search Jn Suchal Supervisor: Prof. Pavol Nvrat Institute of Informatics and Software Engineering Faculty of Informatics and Information Technologies Slovak University of Technology in

164 views • 3 slides
Will Nathan like Camille? Will Nathan vote for candidate T.? 2

Will Nathan like Camille? Will Nathan vote for candidate T.? 2

Will Nathan like Camille? Will Nathan vote for candidate T.? 2 Will Nathan like Camille? Will Nathan vote for candidate T.? 3 4 5 word2vec can be

547 views • 17 slides
Overview & Natural Language Processing: Natural Synergies to Support Digital Information

Overview & Natural Language Processing: Natural Synergies to Support Digital Information

7/3/2016 Bibliometrics, Information Retrieval Overview & Natural Language Processing: Natural Synergies to Support Digital Information Library Research Bibliometrics Retrieval (IR) Dietmar Wolfram NLP & Other University of

361 views • 8 slides

More recommend