Zhengyan Zhou,Hanze Chen,Lingfei Chen,Dong Zhang,Chunming Wu,Xuan Liu,Muhammad Khurram Khan

DOI: https://doi.org/10.1109/tgcn.2024.3432781

2024-01-01

IEEE Transactions on Green Communications and Networking

Abstract:Radio access network (RAN) enables large-scale collection of sensitive data. Privacy-preserving techniques aim to learn knowledge from sensitive data to improve services without compromising privacy. However, as the data scale increases, enforcing privacy-preserving techniques on sensitive data may consume a considerable amount of system resources and impose performance penalties. To reduce system resource consumption, we present NetDP, an in-network architecture for privacy-preserving techniques by leveraging programmable switches to improve resource efficiency (i.e., CPU cycles, network bandwidth, and privacy budgets). The key idea of NetDP is to accommodate and exploit cryptographic operators to reduce resource consumption rather than repetitively and exhaustively suppressing the impact of these techniques. To the best of our knowledge, this is the first time that privacy-preserving techniques in a large-scale data processing system have been enforced on programmable switches. Our experiments based on Tofino switches indicate that NetDP significantly reduces computation latency (e.g., 40.2%-55.8% latency in computations) without impacting fidelity.

Yanfei Fan,Yixin Jiang,Haojin Zhu,Jiming Chen,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/twc.2011.122010.100087

IF: 10.4

2010-01-01

IEEE Transactions on Wireless Communications

Abstract:Privacy threat is one of the critical issues in multi-hop wireless networks, where attacks such as traffic analysis and flow tracing can be easily launched by a malicious adversary due to the open wireless medium. Network coding has the potential to thwart these attacks since the coding/mixing operation is encouraged at intermediate nodes. However, the simple deployment of network coding cannot achieve the goal once enough packets are collected by the adversaries. On the other hand, the coding/mixing nature precludes the feasibility of employing the existing privacy-preserving techniques, such as Onion Routing. In this paper, we propose a novel network coding based privacy-preserving scheme against traffic analysis in multi-hop wireless networks. With homomorphic encryption on Global Encoding Vectors (GEVs), the proposed scheme offers two significant privacy-preserving features, packet flow untraceability and message content confidentiality, for efficiently thwarting the traffic analysis attacks. Moreover, the proposed scheme keeps the random coding feature, and each sink can recover the source packets by inverting the GEVs with a very high probability. Theoretical analysis and simulative evaluation demonstrate the validity and efficiency of the proposed scheme.

Yutaro Yoshinaka,Mio Kochiyama,Yuki Koizumi,Junji Takemasa,Toru Hasegawa

DOI: https://doi.org/10.1016/j.comnet.2024.110721

IF: 5.493

2024-08-24

Computer Networks

Abstract:Anonymous communication protocols are integral tools for people to exercise the right to privacy in their online activities. Such tools are urged to offer maximum protection against various classes of adversaries, including rogue criminals, exploitative companies, and authoritarian or paternalistic regimes, while respecting the diversity of users' activities, from e-mail and web browsing to file transfer and video streaming. In such a context, lightweight anonymity protocols are a promising solution to provide well-balanced anonymity and performance for daily use against a class of adversaries with a relaxed but realistic assumption of their capability. However, as the existing instantiations of these protocols solely target software implementation, they did not fully exhibit their advantages in performance by the relaxation of the adversarial model. This paper presents P 5 HI, a novel instantiation and implementation of a lightweight anonymity protocol on hardware programmable switches. Its realization requires a rethinking of all aspects of the system, beginning with the realization of bit-rotation on the switch, through the construction of a cryptographic scheme and attack prevention, to hardware-friendly procedures during path setup and data transmission. We deploy the full-fledged design of the lightweight anonymity protocol on an actual programmable switch, and our prototype demonstrates its operation at a speed of over 3.0 Tbps.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Hooman Mohajeri Moghaddam,Arsalan Mosenia

DOI: https://doi.org/10.48550/arXiv.1911.09642

2019-11-21

Cryptography and Security

Abstract:In an era of pervasive online surveillance, Internet users are in need of better anonymity solutions for online communications without sacrificing performance. Existing overlay anonymity tools, such as the Tor network, suffer from performance limitations and recent proposals to embed anonymity into Internet protocols face fundamental deployment challenges. In this paper, we introduce Practical Anonymity at the NEtwork Level (PANEL), a practical light-weight anonymity solution based on hardware switching. We implement a prototype of PANEL on a high-performance hardware switch (namely, Barefoot Tofino) using P4 network programming language, and examine the validity and performance of the prototype. Based on our empirical results, PANEL achieves 96% of the actual throughput of the switch and adds a low-latency overhead (e.g., 3% overhead in Skype calls), while offering partial deployablility and transparency (i.e., PANEL requires neither client-side nor server-side modifications).

Xiaodong Wang,Ye Tian,Min Zhao,Mingzheng Li,Lei Mei,Xinming Zhang

DOI: https://doi.org/10.1016/j.comnet.2018.09.018

IF: 5.493

2018-01-01

Computer Networks

Abstract:Protocol-Oblivious Forwarding (POF) is a groundbreaking technology that enables a protocol-independent data plane for the future Software-Defined Networking (SDN). Compared to OpenFlow and P4, POF provides more generality and flexibility in the data plane, but at a cost of additional complexity in the control plane. To overcome such complexity, in this paper we present PNPL, the first control plane programming framework over the POF SDN data plane. PNPL provides an easy-to-use programming paradigm that includes a header specification language and a set of protocol-agnostic programming APIs. With PNPL, a programmer can arbitrarily define network protocols, and compose network policies over the self-defined protocols with high-level abstractions. PNPL’s runtime system takes the user program as input, automatically produces and maintains forwarding pipelines in POF switches. The pipeline efficiently parses the self-defined protocol headers and enforces the programmer’s network policy. We have implemented a PNPL prototype, and experiment with existing and novel protocols and a number of network applications. We show that PNPL can effectively facilitate network innovations by simplifying programming over novel protocols, producing and maintaining forwarding pipelines of high quality; compared to P4, PNPL does not require a device configuration phase, and improves network performance by significantly reducing the packet parsing overhead.

Chen Chen,Adrian Perrig

DOI: https://doi.org/10.1515/popets-2017-0007

2016-12-22

Proceedings on Privacy Enhancing Technologies

Abstract:Abstract We identify two vulnerabilities for existing highspeed network-layer anonymity protocols, such as LAP and Dovetail. First, the header formats of LAP and Dovetail leak path information, reducing the anonymity-set size when an adversary launches topological attacks. Second, ASes can launch session hijacking attacks to deanonymize destinations. HORNET addresses these problems but incurs additional bandwidth overhead and latency. In this paper, we propose PHI, a Path-HIdden lightweight anonymity protocol that solves both challenges while maintaining the same level of efficiency as LAP and Dovetail. We present an efficient packet header format that hides path information and a new back-off setup method that is compatible with current and future network architectures. Our experiments demonstrate that PHI expands anonymity sets of LAP and Dovetail by over 30x and reaches 120 Gbps forwarding speed on a commodity software router.

Yuzhi Wang,Ping Ji,Borui Ye,Pengjun Wang,Rong Luo,Huazhong Yang

DOI: https://doi.org/10.1109/icact.2014.6778916

2014-01-01

Abstract:Internet censorship threatens people's online privacy, and in recent years, new technologies such as high-speed Deep Packet Inspection (DPI) and statistical traffic analysis methods had been applied in country scale censorship and surveillance projects. Traditional encryption protocols cannot hide statistical flow properties and new censoring systems can easily detect and block them "in the dark". Recent work showed that traffic morphing and protocol obfuscation are effective ways to defend from statistical traffic analysis. In this paper, we proposed a novel traffic obfuscation protocol, where client and server communicate on random port. We implemented our idea as an open-source VPN tool named GoHop, and developed several obfuscation method including pre-shared key encryption, traffic shaping and random port communication. Experiments has shown that GoHop can successfully bypass internet censoring systems, and can provide high-bandwidth network throughput.

Ludovic Barman,Italo Dacosta,Mahdi Zamani,Ennan Zhai,Apostolos Pyrgelis,Bryan Ford,Joan Feigenbaum,Jean-Pierre Hubaux

DOI: https://doi.org/10.2478/popets-2020-0061

2020-08-17

Proceedings on Privacy Enhancing Technologies

Abstract:Abstract Organizational networks are vulnerable to trafficanalysis attacks that enable adversaries to infer sensitive information fromnetwork traffic—even if encryption is used. Typical anonymous communication networks are tailored to the Internet and are poorly suited for organizational networks.We present PriFi, an anonymous communication protocol for LANs, which protects users against eavesdroppers and provides high-performance traffic-analysis resistance. PriFi builds onDining Cryptographers networks (DC-nets), but reduces the high communication latency of prior designs via a new client/relay/server architecture, in which a client’s packets remain on their usual network path without additional hops, and in which a set of remote servers assist the anonymization process without adding latency. PriFi also solves the challenge of equivocation attacks, which are not addressed by related work, by encrypting traffic based on communication history. Our evaluation shows that PriFi introduces modest latency overhead (≈ 100ms for 100 clients) and is compatible with delay-sensitive applications such as Voice-over-IP.

Chen Chen,Daniele E. Asoni,Adrian Perrig,David Barrera,George Danezis,Carmela Troncoso

DOI: https://doi.org/10.1109/eurosp.2018.00018

2018-04-01

Abstract:Modern low-latency anonymity systems, no matter whether constructed as an overlay or implemented at the network layer, offer limited security guarantees against traffic analysis. On the other hand, high-latency anonymity systems offer strong security guarantees at the cost of computational overhead and long delays, which are excessive for interactive applications. We propose TARANET, an anonymity system that implements protection against traffic analysis at the network layer, and limits the incurred latency and overhead. In TARANET's setup phase, traffic analysis is thwarted by mixing. In the data transmission phase, end hosts and ASes coordinate to shape traffic into constant-rate transmission using packet splitting. Our prototype implementation shows that TARANET can forward anonymous traffic at over 50 Gbps using commodity hardware.

Osama Bajaber,Bo Ji,Peng Gao

DOI: https://doi.org/10.1109/SP54263.2024.00147

2024-05-24

Abstract:Modern targeted attacks such as Advanced Persistent Threats use multiple hosts as stepping stones and move laterally across them to gain deeper access to the network. However, existing defenses lack end-to-end information flow visibility across hosts and cannot block cross-host attack traffic in real time. In this paper, we propose P4Control, a network defense system that precisely confines end-to-end information flows in a network and prevents cross-host attacks at line rate. P4Control introduces a novel in-network decentralized information flow control (DIFC) mechanism and is the first work that enforces DIFC at the network level at network line rate. This is achieved through: (1) an in-network primitive based on programmable switches for tracking inter-host information flows and enforcing line-rate DIFC policies; (2) a lightweight eBPF-based primitive deployed on hosts for tracking intra-host information flows. P4Control also provides an expressive policy framework for specifying DIFC policies against different attack scenarios. We conduct extensive evaluations to show that P4Control can effectively prevent cross-host attacks in real time, while maintaining line-rate network performance and imposing minimal overhead on the network and host machines. It is also noteworthy that P4Control can facilitate the realization of a zero trust architecture through its fine-grained least-privilege network access control.

Cryptography and Security,Networking and Internet Architecture

George Kadianakis,Theodoros Polyzos,Mike Perry,Kostas Chatzikokolakis

DOI: https://doi.org/10.48550/arXiv.2103.03831

2022-01-12

Abstract:Online anonymity and privacy has been based on confusing the adversary by creating indistinguishable network elements. Tor is the largest and most widely deployed anonymity system, designed against realistic modern adversaries. Recently, researchers have managed to fingerprint Tor's circuits -- and hence the type of underlying traffic -- simply by capturing and analyzing traffic traces. In this work, we study the circuit fingerprinting problem, isolating it from website fingerprinting, and revisit previous findings in this model, showing that accurate attacks are possible even when the application-layer traffic is identical. We then proceed to incrementally create defenses against circuit fingerprinting, using a generic adaptive padding framework for Tor based on WTF-PAD. We present a simple defense which delays a fraction of the traffic, as well as a more advanced one which can effectively hide onion service circuits with zero delays. We thoroughly evaluate both defenses, both analytically and experimentally, discovering new subtle fingerprints, but also showing the effectiveness of our defenses.

Cryptography and Security

Taiyu Wong,Hongyan Cui,Yuepeng Shen,Wenqi Lin,Tao Yu

DOI: https://doi.org/10.1109/uv.2018.8642139

2018-01-01

Abstract:As more and more personal information is used in network services, network anonymity has received more and more attention. Attackers could endanger the victims’ privacy by attacking or eavesdropping nodes during the networks routing. For example, attackers could retrieve the IP and MAC address of victims from network traffics, and use it to corelate the network behavior to individuals. The emerging Software Defined Network (SDN) technique provides a pretty flexible platform that can control the whole network by software programming, which propose a new solution to realize the network anonymity problem. In this paper, we propose a solution based on SDN to anonymize both MAC and IP addresses of network traffics in order to mitigate the privacy threats, and programing it. Furthermore, we test the anonymity function on our SDN Testbed. Our solution supports two working modes: a two-way anonymous mode which anonymizes the IP and MAC addresses of all data packets, and an one-way anonymous mode which anonymizes MAC and IP addresses of senders.

Yazhe Tang,Zixin Xu,Jie Han

DOI: https://doi.org/10.1109/iccis59958.2023.10453777

2023-01-01

Abstract:Encrypting sensitive information such as IP address and port number of data stream can improve the detection resistance of data during network transmission and reduce security threats. The challenge is that the process of achieving sensitive information obfuscation is complex in traditional network environments with limited network node capabilities. Existing work is mostly based on the principles of traditional cryptography to attain secure end-to-end encrypted authentication and transmission. However, it suffers from high time and space costs, complex and inefficient terminal systems, and the inability to encrypt the aforementioned sensitive information. In this paper, we propose to use the P4(Programming Protocol-independent Packet Processors Procedure, one domain-specific language for data plane) to empower network nodes with encryption and decryption of sensitive identification information in a programmable network environment, combined with a control plane to embed traffic security efforts inside the network and ensure the process is transparent to the end system. Experimental results demonstrate that the P4-based encryption and obfuscation mechanism can ensure data transmission in a hybrid network environment of traditional and programmable networks, obfuscating sensitive information without causing performance burden in terms of transmission delay and throughput.

Peng Zhang,Chuang Lin

DOI: https://doi.org/10.1007/978-3-319-31083-1_5

2016-01-01

Abstract:Wireless network coding is a promising technique that can enhance the throughput of wireless networks. However, such a technique also bears a serious security drawback: it breaks the current privacy-preserving protocols (e.g., Onion Routing), since their operations conflict each other. As user privacy in wireless networks is highly valued nowadays, a new privacy-preserving scheme that can function with wireless network coding becomes indispensable. To this end, this chapter presents a novel anonymity scheme named ANOC, which can function in network coding-based wireless mesh networks. ANOC is built upon the classic Onion Routing protocol and resolves its conflict with network coding by introducing efficient cooperation among relay nodes. Using ANOC, we can perform network coding to achieve a higher throughput, while still preserving user privacy in wireless mesh networks. We formally show how ANOC achieves the property of relationship anonymity and conduct extensive experiments via NSclick to demonstrate its feasibility and efficiency when integrated with network coding.

Vipin N. Sathi,Manikantan Srinivasan,Prabhu K. Thiruvasagam,C. Siva Ram Murthy

DOI: https://doi.org/10.1109/tdsc.2020.2968885

2021-11-01

IEEE Transactions on Dependable and Secure Computing

Abstract:In the softwarized fifth generation (5G) networks, authentication protocols are deployed by both the mobile network operators and the third-party service providers to enable secure slice formation at the network side and user validation at the service provider side, respectively. However, the usage of static key-based authentication protocols in 5G networks gives rise to two major problems: (i) network slice topology learning attack during the formation of slice and (ii) exposure of users' service access behavior to the third-party service providers and device-to-device communication peers. In this article, we propose group anonymous (i) privacy preserving mutual authentication (PPMA) and (ii) privacy preserving one-way authentication (PPOA) protocols to address the aforementioned problems, respectively. We also prove the security of the PPMA and PPOA protocols against the chosen ciphertext attack in the random oracle model. The PPMA and PPOA protocols are implemented using the JPBC library and the computation overhead is measured. For 1024 bits discrete logarithm security, the computation overhead of the PPMA and PPOA protocols is respectively 48.54 and 68.65 percent lower than an existing privacy preserving authentication protocol on an Intel processor. The PPMA and PPOA protocols are generic and can be applied in peer-to-peer authentication scenarios where group anonymity and privacy preservation are considered.

Yuejun Zhang,Jiawei Wang,Pengjun Wang,Xiaoyong Xue,Xiaoyang Zeng

DOI: https://doi.org/10.1016/j.vlsi.2020.11.005

IF: 1.345

2021-01-01

Integration

Abstract:With the development of system-on-chip (SoC) chips, more and more design houses are cooperating with each other's. How to achieve benefit sharing and key management for multiple intellectual properties (IPs) has become an emergency problem. This work proposes an orthogonal obfuscation method to protect multiple IPs. The proposed method permits cooperators to control the project using different security keys, protects the patterns with an orthogonal key, and be convenient for the user to manage the key. For reasons of increased security, the proposed method hides the original keys to prevent information leakage. Multi-port Physical Unclonable Function (MPUF) circuit is used as the additional orthogonal key to cluster membership. It protects the IPs from hardware attacks such as brute-force attack, member leakage attack, reverse engineering and so on. The security analyzes results show that the proposed method reduces the key retrieval time by 36.3% over the baseline. The proposed obfuscation methods have been successfully applied to ISCAS′89 benchmark circuits and cryptographic algorithms. Experimental results indicate that the orthogonal obfuscation only increases the area by 3.43% and consumes 2.77% more power than the baseline.

Shi Li,Inshil Doh,Kijoon Chae

DOI: https://doi.org/10.1109/icoin.2016.7427091

2016-01-01

Abstract:Content Delivery Networks (CDN) act as trusted overlay networks that offer high-performance delivery of common Web objects, static data and rich multimedia content by distributing content load among edge servers which are close to the clients. And the interconnection of different CDNs (called CDNi) could provide more advantages and benefits to both content provider and client than a single CDN during the content delivery. However, the interconnection can also bring some security issues which are not existed in single CDN. For example, the users' privacy could be revealed to other CDNs. Thus, to focus on this issue, in this paper, we propose an anonymous IP-based privacy protection mechanism which can protect the users' privacy from leaking to all the CDNs, and the requested content can also be accurately transmitted to the end user through the closest edge server by using the anonymous IP address.

Zixi Cui,Le Tian,Peng Yi,Yuxiang Hu,Jiangxing Wu

DOI: https://doi.org/10.1109/mcom.001.2400448

IF: 9.03

2024-01-01

IEEE Communications Magazine

Abstract:Polymorphic networking (PINet) aims to support the coexistence and evolution of diverse services for the multi-user in a unified programmable environment. An efficient programming system plays a crucial role in realizing PINet, by which the network programs are deployed on the underlying heterogeneous devices. This article presents PINet's programming environment (PPE), a service- oriented programming environment for PINet with three major goals, that is, incremental, application- level, and coordination programming. PPE provides a one end-to-end service abstraction that allows programmers to express packet processing logic (e.g., forwarding and computing) without concern for the network topology and hardware details. PPE also proposes a network-wide compiler system with hierarchical architecture to deploy out-of-the-box services for the multi-user. We elaborately describe the PPE's goals, workflow, and challenges for our motivation. Some implementation details and open issues are discussed as future research directions.

Banafsheh Saber Latibari,Sujan Ghimire,Muhtasim Alam Chowdhury,Najmeh Nazari,Kevin Immanuel Gubbi,Houman Homayoun,Avesta Sasan,Soheil Salehi

2024-05-21

Abstract:Obfuscation stands as a promising solution for safeguarding hardware intellectual property (IP) against a spectrum of threats including reverse engineering, IP piracy, and tampering. In this paper, we introduce Obfus-chat, a novel framework leveraging Generative Pre-trained Transformer (GPT) models to automate the obfuscation process. The proposed framework accepts hardware design netlists and key sizes as inputs, and autonomously generates obfuscated code tailored to enhance security. To evaluate the effectiveness of our approach, we employ the Trust-Hub Obfuscation Benchmark for comparative analysis. We employed SAT attacks to assess the security of the design, along with functional verification procedures to ensure that the obfuscated design remains consistent with the original. Our results demonstrate the efficacy and efficiency of the proposed framework in fortifying hardware IP against potential threats, thus providing a valuable contribution to the field of hardware security.

Cryptography and Security

Jianting Ning,Geong Sen Poh,Jia-Chng Loh,Jason Chia,Ee-Chien Chang

DOI: https://doi.org/10.1145/3319535.3354204

2019-01-01

Abstract:Network middleboxes perform deep packet inspection (DPI) to detect anomalies and suspicious activities in network traffic. However, increasingly these traffic are encrypted and middleboxes can no longer make sense of them. A recent proposal by Sherry et al. (SIGCOMM 2015), named BlindBox, enables the middlebox to perform inspection in a privacy-preserving manner. BlindBox deploys garbled circuit to generate encrypted rules for the purpose of inspecting the encrypted traffic directly. However, the setup latency (which could be 97s on a ruleset of 3,000 as reported) and overhead size incurred by garbled circuit are high. Since communication can only be commenced after the encrypted rules being generated, such delay is intolerable in many real-time applications. In this work, we present PrivDPI, which reduces the setup delay while retaining similar privacy guarantee. Compared to BlindBox, for a ruleset of 3,000, our encrypted rule generation is 288x faster and requires 290,227x smaller overhead for the first session, and is even 1,036x faster and requires 3424,505x smaller overhead over 20 consecutive sessions. The performance gain is based on a new technique for generating encrypted rules as well as the idea of reusing intermediate results generated in previous sessions across subsequent sessions. This is in contrast to Blindbox which performs encrypted rule generation from scratch for every session. Nevertheless, PrivDPI is 6x slower in generating the encrypted traffic tokens, yet in our implementation, the token encryption rate of PrivDPI is more than 17,271 per second which is sufficient for many real-time applications. Moreover, the intermediate values generated in each session can be reused across subsequent sessions for repeated tokens, which could further speedup token encryption. Overall, our experiment shows that PrivDPI is practical and especially suitable for connections with short flows.