Bunker: A privacy-oriented platform for network tracing

Proceedings of the 6th USENIX Symposium on Networked Systems Design and Implementation, NSDI 2009

Volumn , Issue , 2009, Pages 29-42

  Miklas, Andrew G ^a   Saroiu, Stefan ^b   Wolman, Alec ^b   Brown, Angela Demke ^a  

^a UNIVERSITY OF TORONTO   (Canada)

^b MICROSOFT RESEARCH   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPLEX NETWORKS; CRYPTOGRAPHY; SYSTEMS ANALYSIS;

ACCIDENTAL LEAKS; COLLECTION TIME; DESIGN AND IMPLEMENTATIONS; NETWORK TRACING; PRIVACY PROBLEMS; PRIVACY RISKS; SECURITY PROPERTIES; SENSITIVE INFORMATIONS;

SOFTWARE DESIGN;

EID: 85076892732     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (54)

1. M. Allman and V. Paxson. Issues and etiquette concerning use of shared measurement data. In Proceedings of the Internet Measurement Conference (IMC), San Diego, CA, October 2007.
2. C. J. Antonelli, K. Coffman, J. B. Fields, and P. Honeyman. Cryptographic wiretapping at 100 megabits. In 16th SPIE Annual International Symposium on Aerospace/Defense Sensing, Simulation, and Controls, Orlando, FL, April 2002.
3. C. J. Antonelli, M. Undy, and P. Honeyman. The packet vault: Secure storage of network data. In 1st USENIX Workshop on Intrusion Detection and Network Monitoring, Santa Clara, CA, April 1999.
4. P. Barham, B. Dragovic, K. Fraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield. Xen and the art of virtualization. In Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP), pages 164-177, Bolton Landing, NY, 2003.
5. BBC News. Brown apologises for records loss, November 2007. http://news.bbc.co.uk/1/hi/uk_politics/7104945.stm.
6. S. M. Bellovin. Virtual machines, virtual security. Communications of the ACM, 49(10), 2006.
7. P. M. Chen and B. D. Noble. When virtual is better than real. In Proceedings of the Eighth Workshop on Hot Topics in Operating Systems, Elmau, Germany, May 2001.
8. A. Chou, J. Yang, B. Chelf, S. Hallem, and D. Engler. An empirical study of operating system errors. In Proc. of the 18th ACM Symposium on Operating System Principles (SOSP), pages 73-88, Banff, Canada, October 2001.
9. M. P. Collins and M. K. Reiter. Finding p2p file-sharing using coarse network behaviors. In Proceedings of ESORICS, 2006.
10. S. Coull, C. Wright, F. Monrose, M. Collins, and M. Reiter. Playing devil's advocate: Inferring sensitive information from anonymized traces. In Proceedings of the USENIX Security Symposium, Boston, MA, August 2007.
11. R. S. Cox, S. D. Gribble, H. M. Levy, and J. G. Hansen. A safety-oriented platform for web applications. In 27th IEEE Symposium on Security and Privacy, May 2006.
12. J. Criswell, A. Lenharth, D. Dhurjati, and V. Adve. Secure virtual architecture: A safe execution environment for commodity operating systems. In 21st ACM SOSP, Stevenson, WA, Oct 2007.
13. S. Dharmapurikar and V. Paxson. Robust TCP stream reassembly in the presence of adversaries. In 14th USENIX Security Symposium, Baltimore, MD, July 2005.
14. M. Dornseif. 0wned by an ipod, 2004. http://md.hudora.de/presentations/firewire/PacSec2004.pdf.
15. N. Duffield, C. Land, and M. Thorup. Charging from sampled network usage. In Proceedings of Internet Measurement Workshop (IMW), San Francisco, CA, November 2001.
16. Electronic Frontier Foundation. RIAA v. Verizon case archive. http://www.eff.org/legal/cases/RIAA_v_Verizon/.
17. Endace. Dag network monitoring cards - ethernet, 2008. http://www.endace.com/our- products/ dag- network- monitoring- cards/etherne%t.
18. A. Feldmann. BLT: Bi-layer tracing of HTTP and TCP/IP. In 9th International World Wide Web Conference, Amsterdam, Holland, May 2000.
19. A. Feldmann, A. Greenberg, C. Lund, N. Reingold, J. Rexford, and F. True. Deriving traffic demands for operational ip networks: methodology and experience. IEEE/ACM Transactions on Networking (TON), 9(3):265-280, 2001.
20. T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh. Terra: a virtual machine-based platform for trusted computing. In Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP), Bolton Landing, NY, October 2003.
21. J. A. Halderman, S. D. Schoen, N. Heninger, W. Clarkson, W. Paul, J. A. Calandrino, A. J. Feldman, J. Appelbaum, and E. W. Felten. Lest we remember: Cold boot attacks on encryption keys. In Proceedings of the 17th USENIX Security Symposium, San Jose, CA, July 2008.
22. G. Iannaccone. CoMo: An open infrastructure for network monitoring - research agenda. Technical report, Intel Research, 2005.
23. IBM. sHype - Secure Hypervisor. http://www.research.ibm.com/secure_systems_department/projects/ hypervis%or/.
24. A. Iliev and S. Smith. Prototyping an armored data vault: Rights management on big brother's computer. In Privacy-Enhancing Technologies, San Francisco, CA, April 2002.
25. K. Kaneda. Tiny virtual machine monitor, 2006. http://web.yl.is.s.u-tokyo.ac.jp/~kaneda/tvmm/.
26. V. Kiriansky, D. Bruening, and S. P. Amarasinghe. Secure execution via program shepherding. In 11th USENIX Security Symposium, San Francisco, CA, August 2002.
27. A. Lakhina, M. Crovella, and C. Diot. Diagnosing network-wide traffic anomalies. In Proceedings of 2004 Conference on Applications, Technologies, Architectures, and Protocols for computer communications (SIGCOMM), Portland, OR, September 2004.
28. D. Lie, C. Thekkath, and M. Horowitz. Implementing an untrusted operating system on trusted hardware. In 19th ACM SOSP, Bolton Landing, NY, October 2003.
29. S. E. Madnick and J. J. Donovan. Application and analysis of the virtual machine approach to information system security and isolation. In Proc. of the Workshop on Virtual Computer Systems, Cambridge, MA, 1973.
30. G. R. Malan and F. Jahanian. An extensible probe architecture for network protocol performance measurement. In Proceedings of the 1998 Conference on Applications, Technologies, Architectures, and Protocols for computer communications (SIGCOMM), Vancouver, BC, September 1998.
31. J. Mirkovic and P. Reiher. A taxonomy of DDoS attack and defense mechanisms. ACM SIGCOMM Computer Communications Review, 34(2):39-53, 2004.
32. Mondaq. Canada: Disclosure of personal information without consent pursuant to lawful authority, 2007. http://www.mondaq.com/article.asp?article_id=53904.
33. Office of the Privacy Commissioner of Canada. Personal information protection and electronic documents act, 2000. http://www.privcom.gc.ca/legislation/02_06_01_01_e.asp.
34. R. Pang, M. Allman, V. Paxson, and J. Lee. The devil and packet trace anonymization. ACM SIGCOMM Computer Communication Review, 36(1):29-38, 2006.
35. R. Pang and V. Paxson. A high-level programming environment for packet trace anonymization and transformation. In 9th ACM SIGCOMM, Karlsruhe, Germany, August 2003.
36. R. Pang, V. Yegneswaran, P. Barford, V. Paxson, and L. Peterson. Characteristics of Internet background radiation. In Proc. of IMC), Taormina, Italy, October 2004.
37. P. Panholzer. Physical security attacks on windows vista. Technical report, SEC Consult Unternehmensberatung GmbH, 2008. http://www.sec-consult.com/fileadmin/Whitepapers/Vista_Physical_Attacks%.pdf.
38. K. Papagiannaki, N. Taft, Z.-L. Zhang, and C. Diot. Long-term forecasting of internet backbone traffic: Observations and initial models. In Proc. of INFOCOM, San Francisco, CA, April 2003.
39. N. Provos. Encrypting virtual memory. In 9th USENIX Security Symposium, Denver, CO, August 2000.
40. R. Russell. Lguest: The simple x86 hypervisor, 2008. http://lguest.ozlabs.org/.
41. C. Saout. dm-crypt: a device-mapper crypto target, 2007. http://www.saout.de/misc/dm-crypt/.
42. S. Saroiu, K. P. Gummadi, R. J. Dunn, S. D. Gribble, and H. M. Levy. An analysis of Internet content delivery systems. In Proc. of the 5th Symposium on Operating Systems Design and Implementation (OSDI), Boston, MA, December 2002.
43. A. Seshadri, M. Luk, N. Qu, and A. Perrig. SecVisor: A tiny hypervisor to provide lifetime kernel code integrity for commodity OSes. In 21st ACM SOSP, October 2007.
44. J. D. Tygar and B. Yee. Dyad: A system for using physically secure coprocessors. In IP Workshop Proceedings, 1994.
45. R. Vasudevan and Z. M. Mao. Reval: A tool for real-time evaluation of ddos mitigation strategies. In Proceedings of the 2006 Usenix Annual Technical Conference, 2006.
46. VIA. Via padlock security engine. http://www.via.com.tw/en/initiatives/padlock/hardware.jsp.
47. VMware. VMware VMsafe Security Technology. http://www.vmware.com/overview/security/vmsafe.html.
48. R. Wojtczuk. libNids, 2008. http://libnids.sourceforge.net/.
49. A. Wolman. Sharing and Caching Characteristics of Internet Content. PhD thesis, Univ. of Washington, Seattle, WA, 2002.
50. A. Wolman, G. Voelker, N. Sharma, N. Cardwell, M. Brown, T. Landray, D. Pinnel, A. Karlin, and H. Levy. Organization-based analysis of web-object sharing and caching. In Proceedings of the Second USENIX Symposium on Internet Technologies and Systems (USITS), Boulder, CO, October 1999.
51. R. Wooster, S. Williams, and P. Brooks. HTTPDUMP network HTTP packet snooper, April 1996. http://ei.cs.vt.edu/~succeed/96httpdump/.
52. J. Xu, J. Fan, M. Ammar, and S. B. Moon. On the design and performance of prefix-preserving IP traffic trace anonymization. In 1st ACM SIGCOMM IMW Workshop, 2001.
53. J. Yang, C. Sar, P. Twohey, C. Cadar, and D. Engler. Automatically generating malicious disks using symbolic execution. In Proceedings of the IEEE Symposium on Security and Privacy, pages 243-257, Oakland, CA, May 2006.
54. T. Zeller Jr. AOL executive quits after posting of search data. International Herald Tribune, August 2006.