Introducing traffic analysis

Digital Privacy: Theory, Technologies, and Practices

Volumn , Issue , 2007, Pages 95-116

  Danezis, George ^a   Clayton, Richard ^b  

^a Katholieke Universiteit Leuven   (Belgium)

^b UNIVERSITY OF CAMBRIDGE   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84865507939     PISSN: None     EISSN: None     Source Type: Book    
DOI: None     Document Type: Chapter

References (77)

1. Diffie, W. and Landau, S., Privacy on the Line: The Politics of Wiretapping and Encryption, MIT Press, Cambridge, MA, 1998.
2. Herman, M., Intelligence Power in Peace and War, Cambridge University Press, London 1996.
3. Kahn, D., The Codebreakers, Scribner, New York, 1967.
4. Anderson, R., Security Engineering, John Wiley & Sons, New York, 2001.
5. Fullerton, J., British Ruse Held Iraqi’s Attention While Real Invasion Came Elsewhere, The Philadelphia Inquirer, 3 March 1991.
6. Paglen, T. and Thompson, A.C., Planespotting: Nerds with binoculars bust the CIA’s torture taxis, The Village Voice, 15 October, 2006.
7. Callimahos, L.D., Traffic Analysis and the Zendian Problem, Aegean Park Press, Walnut Creet, CA, 1989.
8. Wasserman, S. et al., Social Network Analysis: Methods and Applications (Structural Analysis in the Social Sciences), Cambridge University Press, London, 1994.
9. Travers, J. and Milgram, S., An experimental study of the small world problem, Sociometry, 32, 1969.
10. Lin, N. and Smith, J., Social Capital: A Theory of Social Structure and Action, vol. 19 of Structural Analysis in the Social Sciences, Cambridge University Press, London, 2002.
11. Reed, W.J., A brief introduction to scale-free networks, Technical report, Department of Mathematics and Statistics, University of Victoria, British Columbia, 2004.
12. Carley, K.M., Lee, J.S., and Krackhardt, D., Destabilizing networks, Connections, 22, 79, 2002.
13. Garfinkel, S.L., Leaderless resistance today, First Monday, 3, 2003.
14. Nagaraja, S. and Anderson, R., The topology of covert conflict, Technical Report UCAM-CL-TR-637, University of Cambridge, Computer Laboratory, 2005.
15. Sparrow, M.K., The application of network analysis to criminal intelligence: An assessment of the prospects, Social Networks, 13, 251, 1991.
16. Klerks, P., The network paradigm applied to criminal organisations, Connections, 24, 53, 2001.
17. Hougham, V., Sociological skills used in the capture of Saddam Hussein, Footnotes, Newsletter of the American Sociological Association, 33, 2005.
18. U.S. Army Headquarters Department, Field Manual 3-24: Counterinsurgency, U.S. Army, Washington, D.C., 2006.
19. Krebs, V.E., Uncloaking terrorist networks, First Monday, 7, 2002.
20. Dombroski, M., Fischbeck, P., and Carley, K., Estimating the shape of covert networks, in Proceedings of the 8th International Command and Control Research and Technology Symposium. National Defense War College, Washington D.C. Evidence-Based Research, Track 3, Electronic Publication, Vienna, VA., CCRP, 2003.
21. Fawcett, T. and Provost, F., Adaptive fraud detection, Journal Data Mining and Knowledge Discovery, 1, 291, 1997.
22. Levien, R., Attack resistant trust metrics, 2003, http://www.levien.com/thesis/compact.pdf.
23. Gibson, D., Kleinberg, J., and Raghavan, P., Inferring web communities from link topology, in Proceedings of the 9th ACM Conference on Hypertext and Hypermedia, ACM Press, New York, 1998.
24. Page, L. et al., The pagerank citation ranking: Bringing order to the web, Technical report, Stanford Digital Library Technologies Project, 1998.
25. Kleinberg, J.M., Hubs, authorities, and communities, ACM Computing Surveys, 31, 5, 1999.
26. Renesys Corporation, Market intelligence provides objective analysis of the service provider market, http://www.renesys.com/products services/market intel/.
27. Song, D.X., Wagner, D., and Tian, X., Timing analysis of keystrokes and timing attacks on SSH, in Tenth USENIX Security Symposium, USENIX, Washington, D.C., 2001.
28. Monrose, F., Reiter, M.K., and Wetzel, S., Password hardening based on keystroke dynamics, in ACM Conference on Computer and Communications Security, 73, ACM Press, New York, 1999.
29. Cheng, H. and Avnur, R., Traffic analysis of SSL encrypted web browsing, 1998, http://www.cs.berkeley.edu/~daw/teaching/cs261-f98/projects/final-reports/ronathan-heyning.ps.
30. Hintz, A., Fingerprinting websites using traffic analysis, in R. Dingledine and P.F. Syverson, Eds., Privacy Enhancing Technologies, vol. 2482 of Lecture Notes in Computer Science, 171, Springer-Verlag, Heidelberg, Germany, 2002.
31. Sun, Q. et al., Statistical identification of encrypted web browsing traffic, in IEEE Symposium on Security and Privacy, 19, IEEE Computer Security Press, Los Alamitos, CA, 2002.
32. Danezis, G., Traffic analysis of the HTTP protocol over TLS, 2003, http://www.cl.cam.ac.uk/~gd216/TLSanon.pdf.
33. Bissias, G.D. et al., Privacy vulnerabilities in encrypted HTTP streams, in G. Danezis and D. Martin, Eds., Privacy Enhancing Technologies, vol. 3856 of Lecture Notes in Computer Science, 1, Springer-Verlag, Heidelberg, Germany, 2005.
34. Levene, M. and Loizou, G., Computing the entropy of user navigation in the web, International Journal of Information Technology and Decision Making, 2, 459, 2003.
35. Felten, E.W. and Schneider, M.A., Timing attacks on web privacy, in ACM Conference on Computer and Communications Security, 25, ACM Press, New York, 2000.
36. Kohno, T., Broido, A., and Claffy, k.c., Remote physical device fingerprinting, in IEEE Symposium on Security and Privacy [?], IEEE Computer Society Press, Los Alamitos, CA, 211.
37. Murdoch, S.J., Hot or not: Revealing hidden services by their clock skew, in A. Juels, R.N.Wright, and S.D.C. di Vimercati, Eds., 13th ACM Conference on Computer and Communications Security (CCS), Alexandria, VA, 27, ACM Press, New York, 2006.
38. Dingledine, R., Mathewson, N., and Syverson, P., Tor: The secondgeneration onion router, in Proceedings of the 13th USENIX Security Symposium, USENIX, San Diego, CA, 2004.
39. Bellovin, S.M., A technique for counting NATted hosts, in Internet Measurement Workshop, 267, ACM Press, New York, 2002.
40. Narten, T. and Draves, R., Privacy Extensions for Stateless Address Autoconfiguration in IPv6, RFC3041, IETF, 2001.
41. Aura, T., Cryptographically Generated Addresses (CGA), RFC3972, IETF, 2005.
42. Pascual, A.E., Privacy extensions for stateless address autoconfiguration in IPv6-“requirements for unobservability,” in RVP02, Stockholm, Stockholm, 2002.
43. Fyodor, Nmap-free security scanner for network exploitation and security audit, http://www.insecure.org/nmap/.
44. Snort team, Snort, http://www.snort.org/.
45. Fyodor, Nmap manual, 2006, http://www.insecure.org/nmap/man/.
46. Wang, X. and Reeves, D.S., Robust correlation of encrypted attack traffic through stepping stones by manipulation of interpacket delays, in S. Jajodia, V. Atluri, and T. Jaeger, Eds., ACM Conference on Computer and Communications Security, 20, ACM Press, New York, 2003.
47. Blum, A., Song, D.X., and Venkataraman, S., Detection of interactive stepping stones: Algorithms and confidence bounds, in E. Jonsson, A. Valdes, and M. Almgren, Eds., RAID, vol. 3224 of Lecture Notes in Computer Science, 258, Springer-Verlag, Heidelberg, Germany, 2004.
48. Wang, X., Reeves, D.S., and Wu, S.F., Inter-packet delay-based correlation for tracing encrypted connections through stepping stones, in D. Gollmann, G. Karjoth, and M. Waidner, Eds., ESORICS, vol. 2502 of Lecture Notes in Computer Science, 244, Springer-Verlag, Heidelberg, Germany, 2002.
49. Peng, P., Ning, P., and Reeves, D.S., On the secrecy of timing-based active watermarking trace-back techniques, in S&P 2006 [?], IEEE Computer Society Press, Los Alamitos, CA, 334.
50. Pascual, A.E., Anonymous untraceable communications: Location privacy in mobile internetworking, Ph.D. thesis, Royal Institute of Technology-KTH/IMIT, Stockholm, Sweden, 2001.
51. MIT Media Lab Human Dynamics Group, Reality mining, http://reality.media.mit.edu/.
52. Chaum, D., Untraceable electronic mail, return addresses, and digital pseudonyms, Communications of the ACM, 24, 84, 1981.
53. Danezis, G., Designing and attacking anonymous communication systems, Technical Report UCAM-CL-TR-594, University of Cambridge, Computer Laboratory, 2004.
54. Serjantov, A., On the anonymity of anonymity systems, Technical Report UCAM-CL-TR-604, University of Cambridge, Computer Laboratory, 2004.
55. Langley, A., Mixmaster Remailers. In A. Oram, Ed., Peer-to-Peer: Harnessing the Benefits of a Disruptive Technology, O’Reilly, Sevastapol, CA, 2001.
56. Danezis, G., Dingledine, R., and Mathewson, N., Mixminion: Design of a type III anonymous remailer protocol, in IEEE Symposium on Security and Privacy, IEEE, Berkeley, CA, 2003.
57. Berthold, O., Federrath, H., and Köpsell, S., Web MIXes: A system for anonymous and unobservable Internet access, in H. Federrath, Ed., Designing Privacy Enhancing Technologies, vol. 2009 of LNCS, 115, Springer-Verlag, Heidelberg, Germany, 2000.
58. Agrawal, D. and Kesdogan, D., Measuring anonymity: The disclosure attack, IEEE Security and Privacy, 1, 27, 2003.
59. Kesdogan, D. and Pimenidis, L., The hitting set attack on anonymity protocols, in Fridrich, 326.
60. Danezis, G. and Serjantov, A., Statistical disclosure or intersection attacks on anonymity systems, in Fridrich, 293.
61. Kesdogan, D. et al., Fundamental limits on the anonymity provided by the mix technique, in S&P 2006 [?], IEEE Computer Society Press, Los Alamitos, CA, 86.
62. Wright, M. et al., An analysis of the degradation of anonymous protocols, in NDSS, The Internet Society, 2002.
63. Murdoch, S.J. and Danezis, G., Low-cost traffic analysis of Tor, in S&P 2005 [?], IEEE Computer Society Press, Los Alamitos, CA, 183.
64. Gray, P., And bomb the anchovies, Time, 13 August, 1990.
65. Warinner, A., Security clearances required for Domino’s, 1996, http://home.xnet.com/~warinner/pizza.html.
66. Bellovin, S.M., Probable plaintext cryptanalysis of the IP security protocols, in NDSS, IEEE Computer Society Press, Los Alamitos, CA, 1997.
67. Newman-Wolfe, R. and Venkatraman, B., High level prevention of traffic analysis, Seventh Annual Computer Security Applications Conference, 102, 1991.
68. Venkatraman, B. and Newman-Wolfe, R., Transmission schedules to prevent traffic analysis, Proceedings of the Ninth Annual Computer Security Applications Conference, IEEE, New York, 108, 1993.
69. Newman, R.E. et al., Metrics for trafic analysis prevention, in R. Dingledine, Ed., Privacy Enhancing Technologies, vol. 2760 of Lecture Notes in Computer Science, 48, Springer-Verlag, Heidelberg, Germany, 2003.
70. Voydock, V. and Kent, S., Security mechanisms in high-level network protocols, ACM Computing Surveys (CSUR), 15, 135, 1983.
71. Defense Advanced Research Projects Agency, Research challenges in high confidence networking, U.S. Department of Defense, Washington, D.C., 1998.
72. Guan, Y. et al., Preventing traffic analysis for real-time communication networks, in Proceedings of The IEEE Military Communication Conference (MILCOM) '99, November 1999, IEEE Computer Society Press, Los Alamitos, CA, 1999.
73. Guan, Y. et al., Efficient traffic camouflaging in mission-critical QoSguaranteed networks, in Proceedings of IEEE Information Assurance and Security Workshop, West Point, June 2000, 143, IEEE Computer Society Press, Los Alamitos, CA, 2000.
74. Guan, Y. et al., Netcamo: Camouflaging network traffic for QoS-guaranteed mission critical applications, IEEE Transactions on Systems, Man, and Cybernetics, Part A, 31, 253, 2001.
75. Petersen, R., Towards a U.S. data-retention standard for ISPs, Educause Review, 41, 78, 2006.
76. Federal Communications Commission, Second report and order and memorandum opinion and order, Washington, D.C., 2006.
77. European Union, Directive 2006/24/EC of the European Parliament and of the Council of 15 March 2006 on the retention of data generated or processed in connection with the provision of publicly available electronic communications services or of public communications networks and amending Directive 2002/58/EC, Official Journal of the European Union, L 105, 54, 2006.