Never been KIST: Tor's congestion management blossoms with kernel-informed socket transport

Proceedings of the 23rd USENIX Security Symposium

Volumn , Issue , 2014, Pages 127-142

  Jansen, Rob ^a   Geddes, John ^b   Wacek, Chris ^c   Sherr, Micah ^c   Syverson, Paul ^a  

^a NAVAL RESEARCH LABORATORY   (United States)

^b UNIVERSITY OF MINNESOTA   (United States)

^c GEORGETOWN UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ECONOMIC AND SOCIAL EFFECTS; SCHEDULING;

ACCEPTABLE PERFORMANCE; APPLICATION PERFORMANCE; CONGESTION MANAGEMENT; NETWORK LATENCIES; NETWORK THROUGHPUT; PERFORMANCE PROBLEMS; REAL-TIME KERNEL; SECURITY APPLICATION;

NETWORK SECURITY;

EID: 84970886453     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (62)

1. Alexa top 1 million sites. http://s3.amazonaws.com/alexa-static/top-1m.csv.zip. Retrieved 2012-01-31.
2. CAIDA data. http://www.caida.org/data.
3. DETER testbed. http://www.isi.edu/deter.
4. libevent event notification library. http://libevent.org/.
5. libkqtime code repository. https://github.com/robgjansen/libkqtime.git.
6. libpcap portable C/C++ library for network traffic capture. http://www.tcpdump.org/.
7. Shadow homepage and code repositories. https://shadow.github.io/
8. https://github.com/shadow/.
9. Tor Metrics Portal. http://metrics.torproject.org/.
10. TorPerf. https://gitweb.torproject.org/torperf.git/.
11. TorPS homepage. http://torps.github.io/.
12. AKHOONDI, M., YU, C., and MADHYASTHA, H. V. LASTor: A low-latency as-aware Tor client. In IEEE Symposium on Security and Privacy (Oakland) (2012).
13. ALLMAN, M., PAXSON, V., and BLANTON, E. TCP Congestion Control. RFC 5681 (Draft Standard), Sept. 2009.
14. ALSABAH, M., BAUER, K., ELAHI, T., and GOLDBERG, I. The path less travelled: Overcoming Tor's bottlenecks with traffic splitting. In Privacy Enhancing Technologies Symposium (PETS) (2013).
15. ALSABAH, M., BAUER, K., and GOLDBERG, I. Enhancing Tor's performance using real-time traffic classification. In ACM Conference on Computer and Communications Security (CCS) (2012).
16. ALSABAH, M., BAUER, K., GOLDBERG, I., GRUNWALD, D., MCCOY, D., SAVAGE, S., and VOELKER, G. DefenestraTor: Throwing out windows in Tor. In Privacy Enhancing Technologies Symposium (PETS) (2011).
17. ALSABAH, M., and GOLDBERG, I. PCTCP: Per-circuit tcp-over-ipsec transport for anonymous communication overlay networks. In ACM Conference on Computer and Communications Security (CCS) (2013).
18. BACK, A., MÖLLER, U., AND STIGLIC, A. Traffic analysis attacks and trade-offs in anonymity providing systems. In Workshop on Information Hiding (IH) (2001).
19. CHAABANE, A., MANILS, P., and KAAFAR, M. Digging into anonymous traffic: A deep analysis of the tor anonymizing network. In IEEE Conference on Network and System Security (NSS) (2010).
20. CHAN-TIN, E., SHIN, J., and YU, J. Revisiting circuit clogging attacks on Tor. In IEEE Conference on Availability, Reliability and Security (ARES) (2013).
21. DINGLEDINE, R., and MATHEWSON, N. Anonymity loves company: Usability and the network effect. In Workshop on the Economics of Information Security (WEIS) (2006).
22. DINGLEDINE, R., MATHEWSON, N., and SYVERSON, P. Tor: The second-generation onion router. In USENIX Security Symposium (USENIX) (2004).
23. DINGLEDINE, R., MATHEWSON, N., and SYVERSON, P. Deploying low-latency anonymity: Design challenges and social factors. IEEE Security & Privacy 5, 5 (Sept./Oct. 2007), 83-87.
24. DINGLEDINE, R., and MURDOCH, S. J. Performance improvements on Tor or, why Tor is slow and what we're going to do about it. Tech. Rep. 2009-11-001, The Tor Project, 2009.
25. EVANS, N. S., DINGLEDINE, R., and GROTHOFF, C. A practical congestion attack on Tor using long paths. In USENIX Security Symposium (USENIX) (2009).
26. GEDDES, J., JANSEN, R., and HOPPER, N. How low can you go: Balancing performance with anonymity in Tor. In Privacy Enhancing Technologies Symposium (PETS) (2013).
27. GOPAL, D., and HENINGER, N. Torchestra: Reducing interactive traffic delays over Tor. In ACM Workshop on Privacy in the Electronic Society (WPES) (2012).
28. HA, S., RHEE, I., and XU, L. CUBIC: a new TCP-friendly high-speed TCP variant. ACM SIGOPS Operating Systems Review 42, 5 (2008), 64-74.
29. HAHN, S., and LOESING, K. Privacy-preserving ways to estimate the number of Tor users. Tech. Rep. 2010-11-001, The Tor Project, 2010.
30. HOPPER, N. Protecting Tor from botnet abuse in the long term. Tech. Rep. 2013-11-001, The Tor Project, 2013.
31. HOPPER, N., and VASSERMAN., E. Y., and CHAN-TIN, E. How much anonymity does network latency leak? In ACM Conference on Computer and Communications Security (CCS) (2007). Expanded and revised version in [31].
32. HOPPER, N., and VASSERMAN., E. Y., and CHAN-TIN, E. How much anonymity does network latency leak? ACM Transactions on Information and System Security (TISSEC) 13, 2 (Feb. 2010), 13-28.
33. JAIN, R., and ROUTHIER, S. Packet trains-measurements and a new model for computer network traffic. IEEE Selected Areas in Communications 4, 6 (1986), 986-995.
34. JANSEN, R., BAUER, K., HOPPER, N., and DINGLEDINE, R. Methodically modeling the Tor network. In USENIX Workshop on Cyber Security Experimentation and Test (CSET) (2012).
35. JANSEN, R., GEDDES, J., WACEK, C., SHERR, M., and SYVERSON, P. Appendices to accompany "Never been KIST: Tor's congestion management blossoms with kernel-informed socket transport". Tech. Rep. 14-012, Univ. of Minnesota, 2014. http://www.cs.umn.edu/tech_reports_upload/tr2014/14-012.pdf.
36. JANSEN, R., and HOPPER, N. Shadow: Running Tor in a box for accurate and efficient experimentation. In USENIX Security Symposium (USENIX) (2012).
37. JANSEN, R., HOPPER, N., and KIM, Y. Recruiting new Tor relays with BRAIDS. In ACM Conference on Computer and Communications Security (CCS) (2010).
38. JANSEN, R., JOHNSON, A., and SYVERSON, P. LIRA: Lightweight incentivized routing for anonymity. In Network and Distributed System Security Symposium (NDSS) (2013).
39. JANSEN, R., SYVERSON, P., and HOPPER, N. Throttling Tor bandwidth parasites. In USENIX Security Symposium (USENIX) (2012).
40. JOHNSON, A., WACEK, C., JANSEN, R., SHERR, M., and SYVERSON, P. Users get routed: Traffic correlation on tor by realistic adversaries. In ACM Conference on Computer and Communications Security (CCS) (2013).
41. MATHEWSON, N. Evaluating SCTP for Tor. http://archives.seul.org/or/dev/Sep-2004/msg00002.html, Sept. 2004. Listserv posting.
42. MATHIS, M., and MAHDAVI, J. Forward acknowledgement: Refining TCP congestion control. ACM SIGCOMM Computer Communication Review 26, 4 (1996), 281-291.
43. MATHIS, M., MAHDAVI, J., FLOYD, S., and ROMANOW, A. TCP Selective Acknowledgment Options. RFC 2018 (Proposed Standard), Oct. 1996.
44. MCCOY, D., BAUER, K., GRUNWALD, D., KOHNO, T., and SICKER, D. Shining light in dark places: Understanding the Tor network. In Privacy Enhancing Technologies Symposium (PETS) (2008).
45. MITTAL, P., KHURSHID, A., JUEN, J., CAESAR, M., and BORISOV, N. Stealthy traffic analysis of low-latency anonymous communication using throughput fingerprinting. In ACM Conference on Computer and Communications Security (CCS) (2011).
46. MOORE, W. B., WACEK, C., and SHERR, M. Exploring the potential benefits of expanded rate limiting in Tor: Slow and steady wins the race with Tortoise. In Annual Computer Security Applications Conference (ACSAC) (2011).
47. MURDOCH, S. J. Hot or not: Revealing hidden services by their clock skew. In ACM Conference on Computer and Communications Security (CCS) (2006).
48. MURDOCH, S. J. Comparison of Tor datagram designs. Tech. Rep. 2011-11-001, The Tor Project, 2011.
49. MURDOCH, S. J., and DANEZIS, G. Low-cost traffic analysis of Tor. In IEEE Symposium on Security and Privacy (Oakland) (2005).
50. NOWLAN, M. F., TIWARI, N., IYENGAR, J., AMIN, S. O., and FORD, B. Fitting square pegs through round pipes. In USENIX Symposium on Networked Systems Design and Implementation (NSDI) (2012).
51. NOWLAN, M. F., WOLINSKY, D., and FORD, B. Reducing latency in Tor circuits with unordered delivery. In USENIX Workshop on Free and Open Communications on the Internet (FOCI) (2013).
52. The ns2 Network Simulator. http://www.isi.edu/nsnam/ns/.
53. PAXSON, V., ALLMAN, M., CHU, J., and SARGENT, M. Computing TCP's Retransmission Timer. RFC 6298 (Proposed Standard), June 2011.
54. RAMACHANDRAN, S. Web metrics: Size and number of resources. https://developers.google.com/speed/articles/web-metrics, 2010.
55. REARDON, J., and GOLDBERG, I. Improving Tor using a TCP-over-DTLS tunnel. In USENIX Security Symposium (USENIX) (2009).
56. SHERR, M., MAO, A., MARCZAK, W. R., ZHOU, W., and LOO., B. T., and BLAZE, M. A3: An Extensible Platform for Application-Aware Anonymity. In Network and Distributed System Security Symposium (NDSS) (2010).
57. SNADER, R., and BORISOV, N. A tune-up for Tor: Improving security and performance in the Tor network. In Network and Distributed System Security Symposium (NDSS) (2008).
58. TANG, C., and GOLDBERG, I. An improved algorithm for Tor circuit scheduling. In ACM Conference on Computer and Communications Security (CCS) (2010).
59. Tor network status. http://torstatus.blutmagie.de/index.php.
60. WACEK, C., TAN, H., BAUER, K., and SHERR, M. An empirical evaluation of relay selection in Tor. In Network and Distributed System Security Symposium (NDSS) (2013).
61. WANG, T., BAUER, K., FORERO, C., and GOLDBERG, I. Congestion-aware path selection for Tor. In Financial Cryptography and Data Security (FC) (2012).
62. WEIGLE, E., and FENG, W.-C. A comparison of TCP automatic tuning techniques for distributed computing. In IEEE Symposium on High Performance Distributed Computing (HPDC) (2002).