Innovative Decoy Routing Approach for Unblocking Websites

multiflow cross connection decoy routing using n.w
1 / 39
Embed
Share

Explore the innovative Decoy Routing approach using MultiFlow, Cross-Connection, and TLS 1.3 Session Resumption to bypass filters and enhance online freedom. Addressing the limitations of traditional solutions like proxies, this method leverages decoy hosts to outsmart firewalls and provide access to blocked content effectively.

  • Decoy Routing
  • MultiFlow
  • TLS 1.3
  • Firewall Bypass
  • Online Freedom
rayaanacharya
kasel Follow

Uploaded on | 1 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. MultiFlow: Cross-Connection Decoy Routing using TLS 1.3 Session Resumption Victoria Manfredi and Pi Songkuntham FOCI August 14, 2018

  2. Motivation On the contemporary Internet, many sites are blocked or filtered Covert Host Filtering Firewall Client Adversary Network Outside

  3. Current solutions Some users use proxies or VPNs to bypass filters Covert Host Filtering Firewall Proxy Site Client Adversary Network Outside

  4. Problems with current solutions Using a proxy can attract unwanted attention Covert Host Filtering Firewall Proxy Site Client Someone is being sneaky! mage result for clipart spy Adversary Network Outside

  5. Problems with current solutions and firewalls are getting better at blocking proxies Covert Host Filtering Firewall Proxy Site Client Adversary Network Outside

  6. An alternate approach: decoy routing

  7. Decoy routing intuition Relies on (1) routers being much harder to block than hosts, and (2) existence of sites too (un)important to block Covert Host Filtering Firewall Client Decoy Host Any unblocked site Adversary Network Outside

  8. Implementation Handshake: Client hides cryptographic signal in traffic sent to allowed host, DH. DR detects and responds to Client with its own cryptographic signal hidden in DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Client Decoy Host Any unblocked site Adversary Network Outside

  9. Implementation Handshake: Client hides cryptographic signal in traffic sent to allowed host, DH. DR detects and responds to Client with its own cryptographic signal hidden in DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP 035bc5c2149 Client Decoy Host Any unblocked site Adversary Network Outside

  10. Implementation Handshake: Client hides cryptographic signal in traffic sent to allowed host, DH. DR detects and responds to Client with its own cryptographic signal hidden in DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP 035bc5c2149 Client Decoy Host Any unblocked site dc783a5aa212 Adversary Network Outside

  11. Implementation Tunnel: Client can now securely connect via DR to any IP address. Client DR hide their communication within Client DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Client Decoy Host Any unblocked site Adversary Network Outside

  12. Implementation Tunnel: Client can now securely connect via DR to any IP address. Client DR hide their communication within Client DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Enc(CovRequest) Client Decoy Host Any unblocked site Adversary Network Outside

  13. Implementation Tunnel: Client can now securely connect via DR to any IP address. Client DR hide their communication within Client DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Enc(CovRequest) Client Decoy Host Any unblocked site Adversary Network Outside

  14. Implementation Tunnel: Client can now securely connect via DR to any IP address. Client DR hide their communication within Client DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Enc(CovRequest) Client Decoy Host Any unblocked site Enc(CovResponse) Adversary Network Outside

  15. Decoy routing assumptions

  16. Assumptions Route asymmetry: DR sees only one direction of Client-DH traffic Covert Host Filtering Firewall Decoy Router HTTP, HTTPS, TCP Client Decoy Host Adversary Network Outside

  17. Assumptions Adversary: can monitor, modify, block traffic to/from its network, but cannot see all traffic to/from DR, DH, CH Covert Host Filtering Firewall Decoy Router Client Decoy Host Adversary Network Outside

  18. Assumptions Active attacks: Adversary can replay client traffic and probe Decoy Host, but cannot monitor internal activity of Client Covert Host Filtering Firewall Decoy Router Client Decoy Host Adversary Adversary Network Outside

  19. Are we done? Not quite

  20. Some problems 1. Inline blocking of traffic at DR is problematic for ISPs 2. DR forging/rewriting traffic provides attack surface 3. TLS termination attack affects only decoy routing connections 4. Rise of TLS 1.3

  21. Some problems 1. Inline blocking of traffic at DR is problematic for ISPs Inline blocking 2. DR forging/rewriting traffic provides attack surface Passive tap TapDance [Wustrow et al, 2014]: passive tap but doesn t detect replay 3. TLS termination attack affects only decoy routing connections How to thwart replay attack with passive tap and asymmetric routes? 4. Rise of TLS 1.3

  22. Some problems Forge: Cirripede [Houmansadr et al, 2011] Telex [Wustrow et al, 2011] Curveball [Karlin et al, 2011] TapDance [Wustrow et al, 2014] 1. Inline blocking of traffic at DR is problematic for ISPs Rewrite: Rebound [Ellard et al, 2015] Slitheen [Bocovich and Goldberg, 2016] Waterfall [Nasr et al, 2017] 2. DR forging/rewriting traffic provides attack surface Decoy Host Client Traffic analysis, latency, stack fingerprinting, probing attacks 3. TLS termination attack affects only decoy routing connections How to eliminate forging/rewriting by DR even with asymmetric routes? 4. Rise of TLS 1.3

  23. Some problems 1. Inline blocking of traffic at DR is problematic for ISPs Firewall Enc(CovRequest) 2. DR forging/rewriting traffic provides attack surface Enc(CovResponse) Client What if adversary terminates connection after data exchanged on normal TLS connection? 3. TLS termination attack affects only decoy routing connections 4. Rise of TLS 1.3

  24. Some problems 1. Inline blocking of traffic at DR is problematic for ISPs March 2018: IETF approves TLS 1.3 2. DR forging/rewriting traffic provides attack surface 3. TLS termination attack affects only decoy routing connections Acknowledgements: data collected by Daniel Ellard Browser support of TLS 1.3 4. Rise of TLS 1.3

  25. MultiFlow: another decoy routing protocol

  26. MultiFlow protocol Step 1: Handshake Client signals to Decoy Router by setting TLS ClientRandom to appropriate string Decoy Router (passively observing) Signal 035bc5c2149 Client Decoy Host 035bc5c2149 035bc5c2149 Benefit: Lets Decoy Router authenticate Client as valid (but not necessarily live) user

  27. MultiFlow protocol Step 2: Handshake Client exfiltrates its TLS session key and resumption info to Decoy Router Decoy Router (passively observing) 58b1a3dc46f Client Decoy Host 58b1a3dc46f TLS session key and resumption info 58b1a3dc46f Benefit: Decoy Router can fully impersonate Client with Decoy Host

  28. MultiFlow protocol Step 3: Handshake Decoy Router resumes Client s session, opening new connection to Decoy Host Decoy Router (passively observing) Client Decoy Host Benefit: If resumable, then there exists a live Client even if adversary is replaying Client traffic

  29. MultiFlow protocol Step 3: Handshake Decoy Router resumes Clients session, opening new connection to Decoy Host Client Decoy Host Handshake is complete! Benefit: If resumable, then there exists a live Client even if adversary is replaying Client traffic

  30. MultiFlow protocol Step 4: Tunnel Client exfiltrates virtual message board info: e.g., HTTP POST to replay or email address Decoy Router (passively observing) Client Decoy Host a698de9c12 a698de9c12 POST /path HTTP/1.1 Host: decoy.com OR a698de9c12 client@reachable.com

  31. MultiFlow protocol Step 5: Client exfiltrates request for Covert Host to Decoy Router on Client-Decoy Host connection HTTP POST Tunnel Covert Host Decoy Router (passively observing) 8ba3581dc1 Client Decoy Host 8ba3581dc1 GET / HTTP/1.1 Host: covert.com 8ba3581dc1

  32. MultiFlow protocol Step 6: Decoy Router connects to Covert Host, sends Client request, gets response HTTP POST Tunnel Covert Host Decoy Router (passively observing) Client Decoy Host

  33. MultiFlow protocol Step 7: Decoy Router replays Client POST but now (encrypted) covert response is payload HTTP POST Tunnel Covert Host POST /path Covert Response Decoy Router (passively observing) Client Decoy Host Decoy Response Benefit: Adversary never sees Decoy Router traffic, mitigates traffic analysis attacks

  34. MultiFlow protocol Step 8: Client re-downloads info from POST path on its own connection HTTP POST Tunnel Covert Host Decoy Router (passively observing) GET /path Client Decoy Host GET /path HTTP/1.1 200 OK Covert response Benefit: Decoy Router does not forge or rewrite Client- Decoy Host traffic, mitigates probing attacks

  35. MultiFlow protocol Step 8: Client re-downloads info from POST path on its own connection HTTP POST Tunnel Client Decoy Host Tunnel is complete! Benefit: Decoy Router does not forge or rewrite Client- Decoy Host traffic, mitigates probing attacks

  36. Issues, ideas, summary

  37. MultiFlows (potential) implementation issues aka possible bad things I didn t talk about Session resumption Information leakage HTTP posted data Message board info Replaying posts Feasibility DR sending emails Decoy host collusion

  38. Other ways to use MultiFlow protocol aka possible good things I didn t talk about Virtual symmetric routes Asynchronous comm. Cross-server decoy routing Tap-based authentication Combine with other DR protocols Virtual message-board

  39. MultiFlow summary Decoy routing protocol design to address deployment issues Key ideas: Decoy Router resumes Client s TLS session, communicate via virtual message board Benefits: 1. Tap-based but checks client liveness 2. No DR forging/rewriting of traffic 3. Resists TLS termination attack 4. Designed for TLS 1.3 vumanfredi@wesleyan.edu ?? || /**/ https://victoriamanfredi.com

Related


Academic Program Choices and Subject Selection Guidelines for High School Students

Academic Program Choices and Subject Selection Guidelines for High School Students

vasili
Role of High-Resolution Computed Tomography in Fibrosing Interstitial Lung Diseases

Role of High-Resolution Computed Tomography in Fibrosing Interstitial Lung Diseases

beth
Enhancing Writing Skills at Pucklechurch C of E Primary School

Enhancing Writing Skills at Pucklechurch C of E Primary School

rafe
Overview of Lymphoid Organs in Finfish and Shellfish

Overview of Lymphoid Organs in Finfish and Shellfish

sama
Academic Personnel Hiring and Processing Workshop: Fall 2018

Academic Personnel Hiring and Processing Workshop: Fall 2018

posie
Child Protection and Safeguarding Training Overview

Child Protection and Safeguarding Training Overview

hanzo
School Uniform Update and Options for January 2018

School Uniform Update and Options for January 2018

ellen
District Training Assembly May 12, 2018 - Planning for a Successful Rotary Year

District Training Assembly May 12, 2018 - Planning for a Successful Rotary Year

rayne
Zoonotic Diseases in Mongolia: A One Health Perspective

Zoonotic Diseases in Mongolia: A One Health Perspective

buffy
Insights from SVP 2018: Communication Trends, Student Impressions, and Generational Perspectives

Insights from SVP 2018: Communication Trends, Student Impressions, and Generational Perspectives

naliyab
MABE Services & 2018 Legislative Priorities Overview

MABE Services & 2018 Legislative Priorities Overview

avita
Deanery of Clinical Sciences Funding Challenge 2018 Launch Event

Deanery of Clinical Sciences Funding Challenge 2018 Launch Event

mack_ari
GBIF Data Insights and Trends Report for 2018

GBIF Data Insights and Trends Report for 2018

myro_687
Annual Enrollment 2018 Benefits Overview

Annual Enrollment 2018 Benefits Overview

deas_i
Comparative Analysis of 1997 and 2018 Ohio River Floods in Indiana

Comparative Analysis of 1997 and 2018 Ohio River Floods in Indiana

bachert_m
National Invitational Drill Meet 2018 (NIDM 2018) Event Details

National Invitational Drill Meet 2018 (NIDM 2018) Event Details

ladel
Dublin City Council Cordon Counts Presentation 2018 Overview

Dublin City Council Cordon Counts Presentation 2018 Overview

sali484
Annual General Meeting Summary 2018-2019

Annual General Meeting Summary 2018-2019

spasc
Zimbabwe HIV Viral Load Testing Overview

Zimbabwe HIV Viral Load Testing Overview

shir_492
Annual General Meeting 2018 Summary

Annual General Meeting 2018 Summary

dez_10
Evolution of Earth's Position in Space Over Millennia

Evolution of Earth's Position in Space Over Millennia

hib_sam
Overview of BUC Visioning Plan 2024

Overview of BUC Visioning Plan 2024

chimamand

More Related Content