IJSTE - International Journal of Science Technology and Engineering
580 California St., Suite 400
San Francisco, CA, 94104
Confidential Guarantee in Network Flow using Obfuscation Scheme
visibility
…
description
4 pages
link
1 file
Sign up for access to the world's latest research
checkGet notified about relevant papers
checkSave papers to use in your research
checkJoin the discussion with peers
checkTrack your impact
Abstract
Large datasets of real network flows acquired from the Internet are an invaluable resource for the research community. Unfortunately, network flows carry extremely sensitive information, and this discourages the publication of those datasets. Indeed, existing techniques for network flow sanitization are vulnerable to different kinds of attacks, and solutions proposed for micro data anonymity cannot be directly applied to network traces. In our previous research, we proposed an obfuscation technique for network flows, providing formal confidentiality guarantees under realistic assumptions about the adversary's knowledge. To identify the threats posed by the incremental release of network flows and by using SHA-3 algorithm and formally prove the achieved confidentiality guarantees. To partition hosts in homogeneous groups by Fingerprint based group creation algorithm, we use system details: OS, RAM, Processor, User, IP address.
Related papers
Obfuscation of Sensitive Data for Incremental Release of Network Flows
IEEE ACM Transactions on Networking, 2015
Large datasets of real network flows acquired from the Internet are an invaluable resource for the research community. Applications include network modeling and simulation, identification of security attacks, and validation of research results. Unfortunately, network flows carry extremely sensitive information, and this discourages the publication of those datasets. Indeed, existing techniques for network flow sanitization are vulnerable to different kinds of attacks, and solutions proposed for microdata anonymity cannot be directly applied to network traces. In our previous research, we proposed an obfuscation technique for network flows, providing formal confidentiality guarantees under realistic assumptions about the adversary's knowledge. In this paper, we identify the threats posed by the incremental release of network flows, we propose a novel defense algorithm, and we formally prove the achieved confidentiality guarantees. An extensive experimental evaluation of the algorithm for incremental obfuscation, carried out with billions of real Internet flows, shows that our obfuscation technique preserves the utility of flows for network traffic analysis.
Obfuscation of sensitive data in network flows
2012
In the last decade, the release of network flows has gained significant popularity among researchers and networking communities. Indeed, network flows are a fundamental tool for modeling the network behavior, identifying security attacks, and validating research results. Unfortunately, due to the sensitive nature of network flows, security and privacy concerns discourage the publication of such datasets. On the one hand, existing techniques proposed to sanitize network flows do not provide any formal guarantees. On the other hand, microdata anonymization techniques are not directly applicable to network flows. In this paper, we propose a novel obfuscation technique for network flows that provides formal guarantees under realistic assumptions about the adversary's knowledge. Our work is supported by extensive experiments with a large set of real network flows collected at an important Italian Tier II Autonomous System, hosting sensitive government and corporate sites. Experimental results show that our obfuscation technique preserves the utility of network flows for network traffic analysis.
Towards provably invisible network flow fingerprints
2017 51st Asilomar Conference on Signals, Systems, and Computers, 2017
Network traffic analysis reveals important information even when messages are encrypted. We consider active traffic analysis via flow fingerprinting by invisibly embedding information into packet timings of flows. In particular, assume Alice wishes to embed fingerprints into flows of a set of network input links, whose packet timings are modeled by Poisson processes, without being detected by a watchful adversary Willie. Bob, who receives the set of fingerprinted flows after they pass through the network modeled as a collection of independent and parallel M/M/1 queues, wishes to extract Alice's embedded fingerprints to infer the connection between input and output links of the network. We consider two scenarios: 1) Alice embeds fingerprints in all of the flows; 2) Alice embeds fingerprints in each flow independently with probability p. Assuming that the flow rates are equal, we calculate the maximum number of flows in which Alice can invisibly embed fingerprints while having those fingerprints successfully decoded by Bob. Then, we extend the construction and analysis to the case where flow rates are distinct, and discuss the extension of the network model.
Deep packet anonymization
Proceedings of the Second European Workshop on System Security - EUROSEC '09, 2009
Network traces of Internet attacks are among the most valuable resources for network analysts and security researchers. However, organizations and researchers are usually reluctant to share their network data, as network packets may contain private or sensitive information. To alleviate the problem of information leakage, network traces are often anonymized before being shared. Typical anonymization approaches sanitize, or in some cases completely remove, certain packet header fields, higher-level protocol fields, or even payload information that could reveal the source and destination of an attack incident.
A Generic Anonymization Framework for Network Traffic
2006 IEEE International Conference on Communications, 2006
Lack of trust is one of the main reasons for the limited cooperation between different organizations. The privacy of users is of paramount importance to administrators and organizations, which are reluctant to cooperate between each other and exchange network traffic traces. The main reasons behind reluctance to exchange monitored data are the protection of the users' privacy and the fear of information leakage about the internal infrastructure. Anonymization is the technique to overcome this reluctance and enhance the cooperation between different organizations with the smooth exchange of monitored data. Today, several organizations provide network traffic traces that are anonymized by software utilities or ad-hoc solutions that offer limited flexibility. The result of this approach is the creation of unrealistic traces, inappropriate for use in evaluation experiments. Furthermore, the need for fast on-line anonymization has recently emerged as cooperative defense mechanisms have to share network traffic. Our effort focuses on the design and implementation of a generic and flexible anonymization framework that provides extended functionality, covering multiple aspects of anonymization needs and allowing fine-tuning of privacy protection level. The proposed framework is composed by an anonymization application programming interface (AAPI). The performance results show that AAPI outperforms existing tools, while offering significantly more anonymization primitives.
The devil and packet trace anonymization
Computer Communication Review, 2006
Releasing network measurement data-including packet tracesto the research community is a virtuous activity that promotes solid research. However, in practice, releasing anonymized packet traces for public use entails many more vexing considerations than just the usual notion of how to scramble IP addresses to preserve privacy. Publishing traces requires carefully balancing the security needs of the organization providing the trace with the research usefulness of the anonymized trace. In this paper we recount our experiences in (i) securing permission from a large site to release packet header traces of the site's internal traffic, (ii) implementing the corresponding anonymization policy, and (iii) validating its correctness. We present a general tool, tcpmkpub, for anonymizing traces, discuss the process used to determine the particular anonymization policy, and describe the use of meta-data accompanying the traces to provide insight into features that have been obfuscated by anonymization.
Multi-flow attacks against network flow watermarking schemes
Proceedings of the 17th …, 2008
We analyze several recent schemes for watermarking network flows based on splitting the flow into intervals. We show that this approach creates time dependent correlations that enable an attack that combines multiple watermarked flows. Such an attack can easily be mounted in nearly all applications of network flow watermarking, both in anonymous communication and stepping stone detection. The attack can be used to detect the presence of a watermark, recover the secret parameters, and remove the watermark from a flow. The attack can be effective even if different the watermarks in different flows carry different messages.
OPriv: Optimizing Privacy Protection for Network Traffic
Journal of Sensor and Actuator Networks, 2021
Statistical traffic analysis has absolutely exposed the privacy of supposedly secure network traffic, proving that encryption is not effective anymore. In this work, we present an optimal countermeasure to prevent an adversary from inferring users’ online activities, using traffic analysis. First, we formulate analytically a constrained optimization problem to maximize network traffic obfuscation while minimizing overhead costs. Then, we provide OPriv, a practical and efficient algorithm to solve dynamically the non-linear programming (NLP) problem, using Cplex optimization. Our heuristic algorithm selects target applications to mutate to and the corresponding packet length, and subsequently decreases the security risks of statistical traffic analysis attacks. Furthermore, we develop an analytical model to measure the obfuscation system’s resilience to traffic analysis attacks. We suggest information theoretic metrics for quantitative privacy measurement, using entropy. The full pri...
Data security Implementation for Real Time Internet Packet Traces
icsa.cs.up.ac.za
The present data transfer and security system will no longer be robust to support the data volumes. There has always been a criticism on the transparency of the existing data security and network security systems. Researchers have been working on new methods of establishing secure data transmission, but in vain. The main reason for their failure may be attributed to the nonavailability of the vital "Packet traces" recording real-world Internet traffic. These real time "packet traces are obtained from the internet "tcpdump" and are especially useful for research on traffic dynamics, protocol analysis, workload characterization, and network intrusion detection. However, sharing of Internet packet traces is very limited because real-world traces contain many kinds of sensitive information, such as host addresses, emails, personal web pages, and even authentication keys. The lack of such traces greatly limits research on application protocols. It is especially crippling for network intrusion detection research, forcing researchers to devise synthetic attacks. In this paper we describe a approach to transform and anonymize packet traces. The paper elaborates on the anonymization of the internet packet traces and corresponding trace transformation The algorithm discussed can anonymize both packet headers and payloads, and can perform application-level transformations such as editing HTTP or SMTP headers, replacing the content of Web items with MD5 hashes, or altering filenames or reply codes that match given patterns. The paper aslo goes into soving problems that are dicussed in detatiled by allied litreature. The paper mainly concentrates on the methodology of solving problems related to file transfers and anonymization issues. The huge volumes of file transfer that takes place all over the network are recorded by the trace of the ftp activity on the server. This poseses as a potential threat for the network administrators. The paper discuses a new method for anonymizing ftp traces and opens the gates for a new era of high level programming support for the customization of the entire activity of anonymiztaion and supports writing optimized transformation scripts. Thus the paper aims to shed light on a new trace transformation & anonymization techniques with features for the future, coupled with reliability and frugal use of resources take technology to the masses as well as the researchers, making the world a truly global village. As such, we hope to help open up new opportunities in Internet measurement and network intrusion detection research.
IJSTE - International Journal of Science Technology & Engineering | Volume 2 | Issue 10 | April 2016
ISSN (online): 2349-784X
Confidential Guarantee in Network Flow using
Obfuscation Scheme
Rahumathun Kamila.K
Department of Computer Science & Engineering
Christian College of Engineering & Technology
Oddanchatram, Dindigul, Tamilnadu-624619, India
Sathya.R
Department of Computer Science & Engineering
Christian College of Engineering & Technology
Oddanchatram, Dindigul, Tamilnadu-624619, India
Vasanthi.G
Department of Computer Science & Engineering
Christian College of Engineering & Technology
Oddanchatram, Dindigul, Tamilnadu-624619, India
Roy Sudha Reetha.P
Department of Computer Science & Engineering
Christian College of Engineering & Technology
Oddanchatram, Dindigul, Tamilnadu-624619, India
Abstract
Large datasets of real network flows acquired from the Internet are an invaluable resource for the research community.
Unfortunately, network flows carry extremely sensitive information, and this discourages the publication of those datasets.
Indeed, existing techniques for network flow sanitization are vulnerable to different kinds of attacks, and solutions proposed for
micro data anonymity cannot be directly applied to network traces. In our previous research, we proposed an obfuscation
technique for network flows, providing formal confidentiality guarantees under realistic assumptions about the adversary's
knowledge. To identify the threats posed by the incremental release of network flows and by using SHA-3 algorithm and
formally prove the achieved confidentiality guarantees. To partition hosts in homogeneous groups by Fingerprint based group
creation algorithm, we use system details: OS, RAM, Processor, User, IP address.
Keywords: Data sharing, network flow analysis, privacy, security
________________________________________________________________________________________________________
I.
INTRODUCTION
Obfuscation technique is used to make confidential guarantee for IP address, thus securing the sensitive data and it includes
identification of security attacks, validation, network modeling and simulation. Obfuscation method is used to obfuscate a source
and destination IP address. To provide high security in network flows. To obfuscate the high sensible incremental data in
network flows using obfuscation techniques. With respect to our previous work, the original contributions of this paper consist
in:
1) The identification of confidentiality threats that may arise from the incremental release of network traces.
2) A novel defense algorithm to apply obfuscation to incremental releases of network traces.
3) A theoretical proof of the confidentiality guarantees provided by the defense algorithms.
4) An extensive experimental evaluation of the algorithm for incremental obfuscation, carried out with billions of
Real flows generated by the border router of a commercial autonomous system.
In this experiments on traffic diversity, statistical analysis of flow fields, and network flow analysis.
II. RELATED WORK
Early techniques for network flow obfuscation were based on the encryption of source and destination IP addresses.
However,those techniques proved to be ineffective since an adversary might be able to reidentify message source and destination
by other values of network flows against network flow sanitization methods these techniques, fall into two main categories.
Fingerprinting:
Messages reidentification is performed by matching fields’ values to the characteristics of the target environment (knowledge of
network topology and settings, OS and services of target hosts, etc.).
Typical re-identifying values for network flows are type of service, TCP flags, number of bytes, and number of packets per
flow.
Injection:
The adversary injects a sequence of flows in the target network that are easily recognized due to their
specific characteristics; e.g., marked with uncommon TCP flags, or following particular patterns.
All rights reserved by www.ijste.org
134
Confidential Guarantee in Network Flow using Obfuscation Scheme
(IJSTE/ Volume 2 / Issue 10 / 028)
III. ARCHITECTURES
Existing System
In the existing system, we proposed an obfuscation technique for network flows, providing formal confidentiality guarantees
under realistic assumptions about the adversary’s knowledge. We have presented (k , j ) obfuscation, an obfuscation technique
for network flows, which provides formal confidentiality guarantees under realistic assumptions the adversary's knowledge,
while preserving the utility of released data. Moreover, the incremental release provides important technical advantages. Indeed,
the computational costs and the memory requirements for obfuscating a large dataset could be strongly reduced by partitioning
the dataset in smaller subsets and by running the obfuscation process independently on each subset.
Network flow initializing.
Creating Network Flows and generates following fingerprints (id, hostname, memory, IP address etc) of that network and with
help of Admin maintaining all Network Flows in one path.
(k , j) Obfuscation:
Each IP-group contains at least different IP addresses that appear in. Formally, for each group-ID appearingin a flow , there
exists a set of at least IP addresses appearing in a flow in such that, for each group-ID . p2: Each flow is fp-indistinguishable in a
set of at leastflows in originated by distinct IP addresses belongingto the same IP-group.is undefined if the above properties
cannot be satisfied—i.e., if involves less than different IP addresses(it is impossible to enforce p1) or if contains less than
flows(it is impossible to enforce p2).
Data Flow Diagram
Fig. 1:
Proposed System
To identify the threats posed by the incremental release of network flows and by using SHA-3 algorithm and formally prove the
achieved confidentiality guarantees. To partition hosts in homogeneous groups by Fingerprint based group creation algorithm,
we use system details: OS, RAM, Processor, User, IP address. In order to evaluate the effectiveness of our grouping method, To
measure the homogeneity of hosts of the same group according to their fingerprint vectors.In network flow obfuscation to
obfuscate a source and destination IP address. Using fingerprint the data will be send to router. Router sends that fingerprint to
Host Identity. If finger print is matching in any group then host ID send the data to that fingerprint.
All rights reserved by www.ijste.org
135
Confidential Guarantee in Network Flow using Obfuscation Scheme
(IJSTE/ Volume 2 / Issue 10 / 028)
System architecture:
Fig. 2:
Focus Of Our Work:
Fig. 3:
Fingerprint Based Group Creation
Fingerprint is based on OS, RAM, Processor, Username and IP address on each node. Creating fingerprint for each nodes and
mapping the nodes. For the nodes having similar values we create group for that nodes. The goal of our fingerprint-based IPgroups creation method is to enforce property obfuscation while preserving the quality of obfuscated data. In order to reach this
goal, IP-groups are created by grouping together IPs whose hosts have a similar fingerprint .
Group Identity and Group Intimation
To identify the group, we create a group ID for each at means nodes in which group and id that information is send to all nodes.
Markov models are used to create groups of hosts having similar network behavior. In order to enforce anonymity, the real IP
address of each flow is substituted by its group ID before being released. However, there is neither experimental evidence nor a
formal guarantee that, with this statistically driven approach, an adversary applying available domain knowledge cannot
reidentify hosts by their fingerprint.
Obfuscation of Sensitive Data in Network Flow
IP-groups are created by their fingerprint values. By this, the real IPs in network flows is substituted by the identifier of the IPgroup they belongs to one host. After initializing the set of obfuscated flows, for each IP-group, the flows generated by the hosts
of its IP address are taken and fp-indistinguish ability is enforced and the obfuscated flows is added to all networks.
All rights reserved by www.ijste.org
136
Confidential Guarantee in Network Flow using Obfuscation Scheme
(IJSTE/ Volume 2 / Issue 10 / 028)
IV. CONCLUSION
To addressed the challenging research issue of network flow obfuscation. A proposed a novel defense algorithm to enforce
obfuscation to incremental releases, and SHA-3 proved the confidentiality guarantees. All network flow is maintained in one
path and making high confidential for source and destination IP addresses.
REFERENCES
[1]
[2]
[3]
[4]
[5]
J. King, K. Lakkaraju, and A. J. Slagell, “A taxonomy and adversarial model for attacks against network log anonymization,” in Proc. ACM SAC, 2009, pp.
1286–1293.
S. E. Coull, C. V. Wright, F. Monrose, M. P. Collins, and M. K. Reiter, “Playing devil's advocate: Inferring sensitive information from anonymized
network traces,” in Proc. NDSS, 2007.
S. E. Coull, M. P. Collins, C. V. Wright, F. Monrose, and M. K. Reiter, “On Web browsing privacy in anonymized NetFlows,” in Proc. USENIX Security,
2007, pp. 339–352.
F. McSherry and R. Mahajan, “Differentially-private network trace analysis,” in Proc. ACM SIGCOMM, 2010, pp. 123–134
A. Villani, D. Vitali, D. Riboni, C. Bettini, and L. V. Mancini, “Obsidian:a scalable and efficient framework for NetFlow obfuscation,”in Proc. IEEE
INFOCOM, 2013, pp. 7–8.
All rights reserved by www.ijste.org
137
References (5)
- J. King, K. Lakkaraju, and A. J. Slagell, "A taxonomy and adversarial model for attacks against network log anonymization," in Proc. ACM SAC, 2009, pp. 1286-1293.
- S. E. Coull, C. V. Wright, F. Monrose, M. P. Collins, and M. K. Reiter, "Playing devil's advocate: Inferring sensitive information from anonymized network traces," in Proc. NDSS, 2007.
- S. E. Coull, M. P. Collins, C. V. Wright, F. Monrose, and M. K. Reiter, "On Web browsing privacy in anonymized NetFlows," in Proc. USENIX Security, 2007, pp. 339-352.
- F. McSherry and R. Mahajan, "Differentially-private network trace analysis," in Proc. ACM SIGCOMM, 2010, pp. 123-134
- A. Villani, D. Vitali, D. Riboni, C. Bettini, and L. V. Mancini, "Obsidian:a scalable and efficient framework for NetFlow obfuscation,"in Proc. IEEE INFOCOM, 2013, pp. 7-8.