Presentation is loading. Please wait.

Presentation is loading. Please wait.

Preserving Caller Anonymity in Voice-over-IP Networks Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presenter: Bo Wu.

Published byElisabeth Merritt Modified over 8 years ago

Similar presentations

Presentation on theme: "Preserving Caller Anonymity in Voice-over-IP Networks Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presenter: Bo Wu."— Presentation transcript:

1 Preserving Caller Anonymity in Voice-over-IP Networks Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presenter: Bo Wu

2 Agenda Voice-over-IP Caller Anonymity Threat Models Defending Methods Experimental Evaluation Conclusion

3 Phone. The history…

4 PSTN PSTN- stands for Public Switched Telephone Network PSTN- stands for Public Switched Telephone Network Circuit-based means reserving resources for each user Circuit-based means reserving resources for each user Kind of expensive Kind of expensive

5 Voice-over-IP: another choice Voice over Internet Protocol Voice over Internet Protocol “A method for taking analog audio signals, like the kind you hear when you talk on the phone, and turning them into digital data that can be transmitted over the Internet. “ “A method for taking analog audio signals, like the kind you hear when you talk on the phone, and turning them into digital data that can be transmitted over the Internet. “ Also known as: Also known as: Voice over Packet (VoP) Voice over Packet (VoP) IP Telephony (IPT) IP Telephony (IPT)

6 Benefits #1. SAVING MONEY! #1. SAVING MONEY! Routing phone calls over existing data networks to avoid the need for separate voice and data networks. VOIP offer features and services for free (or at little cost)

7 Benefits Increased Agility Increased Agility Tactical Advantages Tactical Advantages Integrate things like: emails, phone, instant messages, etc. Integrate things like: emails, phone, instant messages, etc.

8 VoIP is popular

9 Characteristics of VoIP network P2P topology Internet peer peer peer peer peer

10 Characteristics of VoIP network Additional QoS requirement ITU (International Telecommunication Union) recommends up to 250ms one-way latency for interactive voice communication. People go mad due to bad quality

11 Anonymity in VoIP networks What is anonymity? NO leakage of information about identity Why is it important? Human rights Sensitive applications

12 Where is the caller? Source privacy Hot topic in many kinds of networks: Ad hoc, Sensor networks, Mesh networks, …… Papers published in: Infocom, ICDCS, CCS, Securecomm, S&P…

13 What’s the difficulties? Strong ability of attackers Content analysis Timing analysis Fully distributed Link latency ……

14 How VoIP works? Establish routes: Unstable topology Routes across different ASPs Sending messages Comply to different application protocols Confidentiality Hop-by-hop encryption End-to-end encryption

15 Establishing routes InitSearch: Bo Zhenhua

16 How does it work? ProcessSearch Bo Zhenhua

17 How does it work? FinSearch Bo Zhenhua

18 What’s the problem? Bad guys are there… Bo Bad guy: Mr. X Bad guy: Mr. Y

19 Zhenhua What’s the problem? Bad guys are there… Bo Bad guy: Mr. X Bad guy: Mr. Y

20 Zhenhua What’s the problem? What if Zhenhua is surrounded by bad guys? Bo Bad guy: Mr. X Bad guy: Mr. Y Bad guy: Mr. W Bad guy: Mr. Z

21 Threat model Composed by assumptions and formulations Three threat models: Deterministic Triangulation Attack Statistical Triangulation Attack Differential Triangulation Attack

22 Deterministic Triangulation Attack “Deterministic” means fixed latency for each link Exploit two properties of the route set up protocol: 1. It establishes the shortest route between the two nodes src and dst. 2. Any node can estimate its distance from src => Each bad guy has the knowledge of its distance from any other node in the network

23 Deterministic Triangulation Attack BoMr. Y Mr. X

24 Deterministic Triangulation Attack

25 For each bad guy p i in network If Calculate the final score:

26 Statistical Triangulation Attack “Statistical” means link latency follows some probabilistic distribution, say Gaussian distribution Exploit one nice property of Gaussian distribution X, Y follow Gaussian distribution If Z = X + Y THEN E(Z) = E(X)+E(Y) When calculating scores, use mean value

27 Differential Triangulation Attack The mentioned two attacks relies on the time stamp in search packet to make the first estimation. What if the source remove time stamp? The attackers can still cooperate……

28 Differential Triangulation Attack Bo Mr. Y Zhenhua Dist(Bo, X)-Dist(Bo,Y) < Dist(Zhenhua, X)-Dist(Zhenhua, Y)

29 Topology discovery All of the three threat models require global information like topology and link latency Malicious nodes can collude to collect such information Send ping messages with small TTL Infer local topology and link latency through pong messages

30 Attack efficiency Deterministic Triangulation Statistical Triangulation

31 Attack efficiency Differential Triangulation

32 Defending algorithms General idea: break the tight correlation of timing and distance Random walk Search Algorithm Best anonymity, worst QOS Hybrid route set up Tradeoff between anonymity and QOS

33 Random walk search algorithm Basic idea: Randomly select a neighbor to forward search request instead of broadcasting (Random walk is used in tens of papers to defend against traffic analysis.) Why it works? According to random walk theory:

34 Hybrid Route set up protocol Controlled random walk Two phases Random walk search phase Search dest node by random walk Broadcast search phase Search dest node by broadcast One kind of probabilistic routing: Start at random walk search phase Remain in this phase with probability of p Transfer to Braodcast search phase with probability of 1-p

35 Hybrid Route set up protocol Multi-Agent Random Walk Send out w search messages instead of one Every search message performs random walk Route established when the first search message arrives at dest node Tradeoff when setting w Bigger w means smaller latency Bigger w also increases attacking efficiency

36 Simulation results Latency study:

37 Simulation results Anonymity study:

38 Comments Brilliant Threat models Capture key properties of broadcast A small percentage of nodes can attack very accurately Not quite novel defending methods Random walk has been used by tens of (if not hundreds of) papers No deep analysis of the performance

39 Conclusion VoIP is gaining more and more popularity Three threat models directly target at caller’s anonymity Introduce randomness to defend against timing attack Lesson: challenging problem to protect privacy as well as providing QoS

40 Questions?

Download ppt "Preserving Caller Anonymity in Voice-over-IP Networks Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presenter: Bo Wu."

Similar presentations

VoIP PRESENTATION BY HÜSEYİN SAVRAN 220702044. OUTLINE PSTN an brief history of telephone.

VoIP PRESENTATION BY HÜSEYİN SAVRAN OUTLINE PSTN an brief history of telephone.
Switching Techniques In large networks there might be multiple paths linking sender and receiver. Information may be switched as it travels through various.

Switching Techniques In large networks there might be multiple paths linking sender and receiver. Information may be switched as it travels through various.
Quality-of-Service Routing in IP Networks Donna Ghosh, Venkatesh Sarangan, and Raj Acharya IEEE TRANSACTIONS ON MULTIMEDIA JUNE 2001.

Quality-of-Service Routing in IP Networks Donna Ghosh, Venkatesh Sarangan, and Raj Acharya IEEE TRANSACTIONS ON MULTIMEDIA JUNE 2001.
BAI613 Module 2 - Voice over IP Technology. Module Objectives 1. Describe the benefits of IP Telephony/Packet Telephony/VoIP over traditional telephone.

BAI613 Module 2 - Voice over IP Technology. Module Objectives 1. Describe the benefits of IP Telephony/Packet Telephony/VoIP over traditional telephone.
Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.

Security in VoIP Networks Juan C Pelaez Florida Atlantic University Security in VoIP Networks Juan C Pelaez Florida Atlantic University.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
Rumor Riding, IEEE ICNP2006, Jinsong Han & Yunhao Liu, HKUST, Nov 12 1 Rumor Riding Anonymizing Unstructured Peer- to-Peer System Jinsong Han and Yunhao.

Rumor Riding, IEEE ICNP2006, Jinsong Han & Yunhao Liu, HKUST, Nov 12 1 Rumor Riding Anonymizing Unstructured Peer- to-Peer System Jinsong Han and Yunhao.
Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presented by Mounica Atluri.

Mudhakar Srivatsa, Ling Liu and Arun Iyengar Presented by Mounica Atluri.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.

A Flexible Model for Resource Management in Virtual Private Networks Presenter: Huang, Rigao Kang, Yuefang.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
LightFlood: An Optimal Flooding Scheme for File Search in Unstructured P2P Systems Song Jiang, Lei Guo, and Xiaodong Zhang College of William and Mary.

LightFlood: An Optimal Flooding Scheme for File Search in Unstructured P2P Systems Song Jiang, Lei Guo, and Xiaodong Zhang College of William and Mary.
Ashish Gupta Under Guidance of Prof. B.N. Jain Department of Computer Science and Engineering Advanced Networking Laboratory.

Ashish Gupta Under Guidance of Prof. B.N. Jain Department of Computer Science and Engineering Advanced Networking Laboratory.
Application layer (continued) Week 4 – Lecture 2.

Application layer (continued) Week 4 – Lecture 2.
Voice Over Internet Protocol “VoIP” Muayyed Al Kadhem Abdulkhaleq Al Musaleem.

Voice Over Internet Protocol “VoIP” Muayyed Al Kadhem Abdulkhaleq Al Musaleem.
Trust Level Based Self-Organized Routing Protocol for Secure Ad Hoc Networks Li Xiaoqi, GiGi 12/3/2002.

Trust Level Based Self-Organized Routing Protocol for Secure Ad Hoc Networks Li Xiaoqi, GiGi 12/3/2002.
IP Telephony (Article Presentation) by Samir Goswami Source: Rivier College, CS699 Professional Seminar.

IP Telephony (Article Presentation) by Samir Goswami Source: Rivier College, CS699 Professional Seminar.
Probability Grid: A Location Estimation Scheme for Wireless Sensor Networks Presented by cychen Date : 3/7 In Secon (Sensor and Ad Hoc Communications and.

Probability Grid: A Location Estimation Scheme for Wireless Sensor Networks Presented by cychen Date : 3/7 In Secon (Sensor and Ad Hoc Communications and.
CSE 461: Distance Vector Routing. Next Topic  Focus  How do we calculate routes for packets?  Routing is a network layer function  Routing Algorithms.

CSE 461: Distance Vector Routing. Next Topic  Focus  How do we calculate routes for packets?  Routing is a network layer function  Routing Algorithms.
Voice over Internet Protocol (VoIP) Training and Development.

Voice over Internet Protocol (VoIP) Training and Development.

Similar presentations

Ads by Google