Preventing timing analysis in networks: A statistical inference perspective

IEEE Signal Processing Magazine

Volumn 30, Issue 5, 2013, Pages 76-85

  Kadloor, Sachin ^a   Venkitasubramaniam, Parv ^b   Kiyavash, Negar ^c  

^a University of Illinois at Urbana Champaign   (United States)

^b Lehigh University   (United States)

^c UNIVERSITY OF ILLINOIS AT URBANA CHAMPAIGN   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

NETWORK PROTOCOLS; SCHEDULING; SECURITY OF DATA; TIMING CIRCUITS;

FINANCIAL RESOURCES; LEGITIMATE USERS; NETWORK OPERATIONS; PASSIVE ADVERSARY; SCHEDULING STRATEGIES; STATISTICAL INFERENCE; TIMING INFORMATION; UNIFIED SOLUTIONS;

SIGNAL PROCESSING;

EID: 85032751278     PISSN: 10535888     EISSN: None     Source Type: Journal    
DOI: 10.1109/MSP.2013.2261131     Document Type: Article

References (29)

1. J.-F. Raymond, "Traffic analysis: Protocols, attacks, design issues and open problems," in Designing Privacy Enhancing Technologies: Proc. Int. Workshop Design Issues Anonymity and Unobservability, 2001, pp. 10-29. (Pubitemid 33241785)
2. A. Hussain, J. Heidemann, and C. Papadopoulos, "A framework for classifying denial of service attacks," in Proc. 2003 Conf. Applications, Technologies, Architectures, Protocols for Computer Communications, 2003, pp. 99-110.
3. Y.-C. Hu, A. Perrig, and D. B. Johnson, "Wormhole attacks in wireless networks," IEEE J. Select. Areas Commun., vol. 24, no. 2, pp. 370-380, 2006.
4. N. West, The SIGINT Secrets: The Signal Intelligence War: 1900 to Today. New York: William Morrow, 1988.
5. P. Venkitasubramaniam, T. He, L. Tong, S. Wicker, and C. University, "Toward an analytical approach to anonymous wireless networking," IEEE Commun. Mag., vol. 46, pp. 140-146, Feb. 2008.
6. B. Radosavljevic and B. Hajek, "Hiding traffic flow in communication networks," in Proc. Military Communications Conf., 1992, pp. 1096-1100.
7. E. English and S. Hamilton, "Network security under siege: The timing attack," Computer, vol. 29, pp. 95-97, Mar. 1996.
8. I. Goldberg and D. Wagner, "Randomness and the Netscape browser," Dr. Dobb's, vol. 21, no. 1, pp. 66-71, 1996.
9. D. X. Song, D. Wagner, and X. Tian, "Timing analysis of keystrokes and timing attacks on SSH," in Proc. 10th USENIX Security Symp., 2001, p. 25.
10. A. Back, U. Möller, and A. Stiglic, "Traffic analysis attacks and trade-offs in anonymity providing systems," in Proc. 4th Int. Workshop Information Hiding, (I H W ' 01), London, U.K., pp. 245-257.
11. D. Chaum, "Untraceable electronic mail, return addresses and digital pseudonyms," Commun. ACM, vol. 24, pp. 84-88, Feb. 1981. (Pubitemid 11480996)
12. V. Shmatikov and M.-H. Wang, "Timing analysis in low-latency mix networks: Attacks and defenses," in Computer Security ESORICS 2006 (Lecture Notes in Computer Science, vol. 4189), D. Gollmann, J. Meier, and A. Sabelfeld, Eds. Berlin: Springer, 2006, pp. 18-33. (Pubitemid 44609846)
13. B. N. Levine, M. K. Reiter, C. Wang, and M. Wright, "Timing attacks in low-latency mix systems (extended abstract)," in Proc. 8th Int. Financial Cryptography Conf. (FC 2004), Key West, FL, LNCS 3110, pp. 251-265.
14. S. Kadloor, X. Gong, N. Kiyavash, T. Tezcan, and N. Borisov, "Low-cost side channel remote traffic analysis attack in packet networks," in Proc. IEEE ICC 2010-Communication and Information System Security Symposium, Cape Town, South Africa, pp. 1-5.
15. A. Back, U. Möller, and A. Stiglic, "Traffic analysis attacks and trade-offs in anonymity providing systems," in Information Hiding (Lecture Notes in Computer Science, vol. 2137). New York: Springer-Verlag, 2001, pp. 245-247.
16. S. J. Murdoch and G. Danezis, "Low-cost traffic analysis of Tor," in Proc. 2005 IEEE Symp. Security and Privacy (SP '05), Washington, D.C., pp. 183-195.
17. V. Anantharam and S. Verdu, "Bits through queues," IEEE Trans. Inform. Theory, vol. 42, pp. 4-18, Jan. 1996. (Pubitemid 126775652)
18. J. Giles and B. Hajek, "An information-theoretic and game-theoretic study of timing channels," IEEE Trans. Inform. Theory, vol. 48, pp. 2455-2477, Sept. 2002. (Pubitemid 35032673)
19. D. Chaum, "Blind signatures for untraceable payments," in Advances in Cryp-tology: Proc. Crypto, New York: Plenum, 1983, vol. 82, pp. 199-203.
20. I. S. Moskowitz and A. R. Miller, "The channel capacity of a certain noisy timing channel," IEEE Trans. Inform. Theory, vol. 38, pp. 1339-1344, July 1992.
21. C. Díaz, S. Seys, J. Claessens, and B. Preneel, "Towards measuring anonymity," in Proc. Privacy Enhancing Technologies Workshop (PET 2002), LNCS 2482, pp. 54-68.
22. S. Mathur and W. Trappe, "BIT-TRAPS: Building information-theoretic traffic privacy into packet streams," IEEE Trans. Inform. Forensics Sec., vol. 6, no. 3, pp. 752-762, 2011.
23. X. Gong, N. Borisov, N. Kiyavash, and N. Schear, "Website detection using remote traffic analysis," in Privacy Enhancing Technologies (Lecture Notes in Computer Science, vol. 7384). Berlin: Springer, 2012, pp. 58-78.
24. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage, "Hey, you, get off of my cloud: Exploring information leakage in third-party compute clouds," in Proc. 16th ACM Conf. Computer Communications Security (CCS '09), New York, pp. 199-212.
25. S. Kadloor, N. Kiyavash, and P. Venkitasubramaniam, "Mitigating timing based information leakage in shared schedulers," in Proc. IEEE 2012 INFOCOM, pp. 1044-1052.
26. S. Kadloor, N. Kiyavash, and P. Venkitasubramaniam. Scheduling with privacy constraints. presented at the 2012 IEEE Information Theory Workshop (IEEE ITW 2012) [Online]. Available: http://www.ifp.illinois.edu/~kadloor1/ kadloor-itw-extended.pdf
27. S. Kadloor and N. Kiyavash, "Delay optimal policies offer very little privacy," in Proc. 32nd Annu. IEEE Int. Conf. Computer Communications (INFOCOM'2013), Turin, Italy, pp. 2552-2560.
28. A. Mishra and P. Venkitasubramaniam, "Admissible length study in anonymous networking: A detection theoretic perspective," IEEE J. Select. Areas Commun., to be published.
29. S. Kadloor, N. Kiyavash, and P. Venkitasubramaniam. Mitigating timing based information leakage in shared schedulers. IEEE Trans. Networking [Online]. submitted for publication. Available: http://www.ifp.illinois. edu/~kadloor1/kadloor2013ton.pdf [SP]