wh what t ca can you learn fr from an n ip
play

Wh What t Ca Can You Learn fr from an n IP? Simran Patil and - PowerPoint PPT Presentation

Aug 14, 2023 •275 likes •444 views

Wh What t Ca Can You Learn fr from an n IP? Simran Patil and Nikita Borisov University of Illinois at Urbana-Champaign @SimranPatil25 @nikitab In the beginning GET /~nikitab/ HTTP/1.1 Host: geocities.com HTTP/1.1 200 OK

  1. Wh What t Ca Can You Learn fr from an n IP? Simran Patil and Nikita Borisov University of Illinois at Urbana-Champaign @SimranPatil25 @nikitab

  2. In the beginning… GET /~nikitab/ HTTP/1.1 Host: geocities.com … HTTP/1.1 200 OK … <blink>this page is under construction</blink> http://geocities.com /~nikitab/ under construction ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 2

  3. Today A? irtf.org DNS query irtf.org A 4.31.198.44 ClientHello TLS … SNI irtf.org handshake Server Certificate … CN=irtf.org GET /anrw/2019/ HTTP/1.1 Host: irtf.org … TLS HTTP/1.1 200 OK encrypted https:// irtf.org / ??? … ??? <title>ANRW’19</title> ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 3

  4. Soon? A? irtf.org DNS DNS-over-HTTPS/TLS query irtf.org A 4.31.198.44 ClientHello TLS … SNI irtf.org ESNI handshake Server Certificate TLS1.3 … CN=irtf.org GET /anrw/2019/ HTTP/1.1 Host: irtf.org … TLS HTTP/1.1 200 OK encrypted … 4.31.198.44 <title>ANRW’19</title> ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 4

  5. What can you learn from a domain name? drugrehab.ca vim.org dailystormer.name whatisabrony.com www.lgbtcenters.org foxnews.com lymphoma.ca nickleback.com anime-expo.org aljazeera.com www.oshawamosque.com furrycons.com montrealcathedral.ca ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 5

  6. Methodology Page Alexa global resources: domains => MIDA URLs, zdns IP address => top 1000000 domains, rDNS types 944 094 sites 1 819 087 domains 90 514 000 objects 1 795 506 resolved 741 049 IPs ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 6

  7. rDNS Public Suffix List (PSL) match: server1.facebook.com =~ facebook.com ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 7

  8. Domains and IPs domain1 IP 1 domain2 IP 2 domain3 Average Average IP 3 in-degree: 3.14 degree: 1.46 domain4 IP 4 domain5 IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 8

  9. IP Anonymity Set domain1 IP 1 domain2 IP 2 domain3 Average Average IP 3 in-degree: 3.14 degree: 1.46 domain4 IP 4 domain5 IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 9

  10. IP Anonymity Sets 47.6% IPs have an anonymity set of 1 Largest anonymity set has 16 050 domains ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 10

  11. Site-unique IPs domain1 IP 1 site1 domain2 IP 2 domain3 site2 IP 3 domain4 site3 IP 4 E.g., 74.125.132.154 has an domain5 anonymity set of 1— IP 5 stats.g.doubleclick.net—but is domain6 seen on over 10% of all the sites in our data set! ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 11

  12. Site-unique IPs domain1 IP 1 site1 68% of IPs in our set are site-unique domain2 IP 2 43% of sites use at least 1 resource that domain3 site2 IP 3 maps to a site-unique IP domain4 site3 For 39.5% of sites, the front page maps IP 4 domain5 to a site-unique IP IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 12

  13. Page Load Fingerprints site??? 23.64.109.196 192.33.31.70 98.84.112.4 193.200.231.133 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 13

  14. Site IP sets domain1 IP 1 site1 domain2 IP 2 domain3 site2 IP 3 site3 IP domain4 set site3 95.7% sites have a unique IP set IP 4 domain5 cluster of 903 sites has same IP set IP 5 domain6 ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 14

  15. What about CDNs? • Many CDNs could use same IP address for all sites but don’t • Ported IP space • Connections w/o SNI • In our data set 200K domains are hosted by CloudFlare, using 91K IPs • Including 3% of the sites with a site-unique front page IP • Randomizing or normalizing IP addresses could help ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 15

  16. Conclusions • DNS privacy offers limited protection • For web browsing • Against an adversary with a good prior list of sites • In our Alexa 1M crawl dataset • 48% of all IPs map to a single domain • 68% of all IPs map to a single site • 43% of all sites contain a site-unique IP • 95% of sites have a unique IP set • Changes to web hosting infrastructure could help • Normalize or randomize CDN IP addresses ANRW'19 S. Patil & N. Borisov, "What Can You Learn from an IP?" 16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through

Learn Blackboard Learn Learn with others Learn in your own time, pace, space Learn through designing for teaching Learn with others 1. Black Swan Conferences Hear The bigger picture Higher Education Blackboard UWA Experience

478 views • 16 slides
Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do

Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do

Learn more Do more Be more Learn more Do more Be more UNITY Learn more Do more Be more Key Staff linked to Year 7 Mrs Angela Haynes Mrs Louisa Smith Head of Year 7 Year 7 PSM Ms Leyla Mrs Julia Emmel Bilsborough

736 views • 27 slides
Learn how together we can fight back and win Learn more about whats at stake Learn about the

Learn how together we can fight back and win Learn more about whats at stake Learn about the

In this presentation you will: Learn how together we can fight back and win Learn more about whats at stake Learn about the state of play around the country 2.3 million members across 50 states fighting for access to abortion care, birth

511 views • 40 slides
Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs.

Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs.

Motivation to Learn GPGPU Julius Parulek Why to Learn About GPU? Computational power of GPU vs. CPU Why to Learn About GPU? NVIDIA GPU relative performances Why to Learn About GPU? Hardware Why to Learn About GPU? Interactive rendering

852 views • 46 slides
Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser

Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser

Introduction to AAE520 Forebody/LDV Lab Learn to use a water tunnel Learn about the laser doppler velocimeter (LDV), use it for some measurements Learn about flow visualization Learn about subsonic forebodies at high angle of

952 views • 23 slides
what you need to learn now to decide what you need to learn next Bob Dowling

what you need to learn now to decide what you need to learn next Bob Dowling

Scientific computing: An introduction to tools and programming languages what you need to learn now to decide what you need to learn next Bob Dowling rjd4@cam.ac.uk University Information Services Course outline Basic concepts

762 views • 73 slides
Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO

Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO

Se Seek, k, Learn rn and nd Serve ve Se Seek, k, Learn rn and nd Serve ve WELCOME TO GOOD COUNSEL PRIMARY SCHOOL Se Seek, k, Learn rn and nd Serve ve PREPARATORY YEAR 2017 PARENT MEETING Seek, Se k, Learn rn and nd Serve ve

295 views • 18 slides
SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research

SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research

SIP deployment in LEARN Nimal Ratnayake &lt;nimalr@learn.ac.lk&gt; Lanka Education and Research Network (LEARN) and Department of Electrical &amp; Electronic Engineering, University of Peradeniya 1 Introduction LEARN: Lanka Educational

374 views • 10 slides
Organization 2 Organization Course Goals Learn to write good C ++ Learn to write

Organization 2 Organization Course Goals Learn to write good C ++ Learn to write

Organization Organization 2 Organization Course Goals Learn to write good C ++ Learn to write high-performance code with C ++ 3 Basic syntax Common idioms and best practices Learn to implement large systems with C ++ C ++ standard

593 views • 46 slides
Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn

Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn

Non-standard evaluation (NSE) An aside how we used to learn R An aside how we used to learn R &quot;There are three kinds of language objects that are available for modification, calls, expressions, and functions.&quot; Some useful

389 views • 11 slides
Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of

Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of

Grant Writing 101 Virtual Lunch &amp; Learn Todays Objectives: Learn the Importance of Organizational Mission &amp; Structure Review the Elements of a Successful Proposal Gain Tips for Finding Funding Options Learn more

792 views • 26 slides
Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how

Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how

John A. Sahatjian Wall Fire District No. 3 Learn the reality of fire what a fire is really like Learn how to survive and escape from a building on fire Learn how to prevent a fire VID IDEO EO PL PLAN AN TO TO GE GET T OU

174 views • 16 slides
Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and

Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and

1 Corinthians Learn and live 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 1 Corinthians 10 Learn and live Learn and live 1. Take life seriously Learn and live 1. Take life seriously Give full effort to follow Jesus Learn and

298 views • 16 slides
How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture

How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture

Numeracy How can we help? LEARN TOGETHER Lets learn to enjoy, achieve, respect and nurture together Introduction Whole School Calculation Policy Teaching methods have changed focus now on understanding, rather than

579 views • 20 slides
MQ Day 1 implement simple devices and topologies learn what send is learn about

MQ Day 1 implement simple devices and topologies learn what send is learn about

MQ Day 1 implement simple devices and topologies learn what send is learn about OnData difference between bind and connect shell script to start multiple devices? introduce proxy? /// kind of extended

970 views • 18 slides
1 Syntax-directed Translation: AST Construction example Using SableCC to specify grammar and

1 Syntax-directed Translation: AST Construction example Using SableCC to specify grammar and

Some Thoughts on Grad School Undergraduate Compilers Review and Intro to MJC Goal Announcements learn how to learn a subject in depth Mailing list is in full swing, go ahead and share test cases learn how to organize a project,

84 views • 6 slides
A Unified View of Local Learning: Theory and Algorithms for Enhancing Linear Models Valentina

A Unified View of Local Learning: Theory and Algorithms for Enhancing Linear Models Valentina

A Unified View of Local Learning: Theory and Algorithms for Enhancing Linear Models Valentina Zantedeschi Univ Lyon, UJM-Saint-Etienne, CNRS, Institut d Optique Graduate School, Laboratoire Hubert Curien UMR 5516, F-42023, SAINT-ETIENNE, France

1.13k views • 83 slides
SeqGAN: Sequence Generative Adversarial Nets with Policy Gradient Lantao Yu , Weinan Zhang

SeqGAN: Sequence Generative Adversarial Nets with Policy Gradient Lantao Yu , Weinan Zhang

SeqGAN: Sequence Generative Adversarial Nets with Policy Gradient Lantao Yu , Weinan Zhang , Jun Wang , Yong Yu Shanghai Jiao Tong University, University College London Attribution Multiple slides taken from

1.05k views • 67 slides
The e Mec echa Anime e Panel el at Aya yacon 20 2013 Introduction Wha What Is Mecha

The e Mec echa Anime e Panel el at Aya yacon 20 2013 Introduction Wha What Is Mecha

The e Mec echa Anime e Panel el at Aya yacon 20 2013 Introduction Wha What Is Mecha Anime? e? Mecha anime is, bluntly, a genre of anime all about robots and similar machines Usually rhey are used for fighting, but the genre

688 views • 30 slides
Using Comics and Graphic Novels with Children and Teens Presented by Kyla Hunt and Katherine

Using Comics and Graphic Novels with Children and Teens Presented by Kyla Hunt and Katherine

Using Comics and Graphic Novels with Children and Teens Presented by Kyla Hunt and Katherine Mowery Kyla Hunt is the Library Management Consultant at Texas State Library and Archives Commission Who are we? Katherine Mowery is currently

626 views • 27 slides
Desi De signi gning ng the he Metadata Mod odel for or the he Aggr Aggrega gation ion

Desi De signi gning ng the he Metadata Mod odel for or the he Aggr Aggrega gation ion

ICADL 2019 Workshop: MAGIC- Information Commons for Manga, Anime and video Games Desi De signi gning ng the he Metadata Mod odel for or the he Aggr Aggrega gation ion of of MAG AG Metadata - the Development of Media-Art Database Dr.

385 views • 17 slides
RID Implementation Report Toshifumi Kai (kai@trc.mew.co.jp), Akito Nagashima

RID Implementation Report Toshifumi Kai (kai@trc.mew.co.jp), Akito Nagashima

RID Implementation Report Toshifumi Kai (kai@trc.mew.co.jp), Akito Nagashima (akito_nagashima@mewe1.mewnet.or.jp), Hiroshige Nakatani (nakatani@trc.mew.co.jp), Naohiro Fukuda (fukuda@trc.mew.co.jp), Shimizu Hiroshi (shimizu@trc.mew.co.jp)

681 views • 17 slides
What is a dating sim? What is a dating sim? Cast of cute girls Tokimeki Memorial (1994) What

What is a dating sim? What is a dating sim? Cast of cute girls Tokimeki Memorial (1994) What

What is a dating sim? What is a dating sim? Cast of cute girls Tokimeki Memorial (1994) What is a dating sim? Or a cast of cute boys Tokimeki Memorial Girl's Side (2002) What is a dating sim? And you Goal Get boys/girls to fall in love

481 views • 20 slides
Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack:

Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack:

Cyber@UC Meeting 70 Networking and Basic Security If Youre New! Join our Slack: cyberatuc.slack.com (URL changed!) SIGN IN! (Slackbot will post the link in #general every Wed@6:30) Feel free to get involved with one of our

489 views • 20 slides

More recommend