Preventing Surveillance in Network Elements with SPINE

spine surveillance protection in the network n.w
1 / 16
Embed
Share

Learn about how SPINE offers a practical solution for preventing adversaries from observing IP addresses along an end-to-end path in network communication. It processes data at hardware rates without requiring cooperation from intermediate autonomous systems or end-users, ensuring flow-packet unlinkability and enhancing privacy protection.

  • Network Security
  • Privacy Protection
  • SPINE Solution
  • Surveillance Prevention
rayaanacharya
ily_sc Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. SPINE: SURVEILLANCE PROTECTION IN THE NETWORK ELEMENTS Trisha Datta, Nick Feamster, Jennifer Rexford, Liang Wang Princeton University 1

  2. Privacy Threat from Plaintext IP Addresses IP addresses can reveal sensitive information about senders/recipients Threat of surveillance by intermediate networks Real world example: Brazil, Portugal, USA (adversary) Threat model: Trusted Trusted Entity Entity #1 #1 Trusted Trusted Entity Entity #2 #2 Untrusted Untrusted Entity Entity R R1 1 R R2 2 2

  3. Deployment Challenges in Existing Solutions IPSec Tunnels: encrypt entire packet Computationally expensive Network-Layer Anonymity Systems: nodes on path implement privacy- preserving protocol (e.g., Tor) Require participation from (potentially adversarial) intermediate nodes Require participation from (probably uninformed) end-users We want a faster solution with fewer participants! 3

  4. Recent Technologies and Trends TLS use is widespread payloads are encrypted Programmable switches let us manipulate packets at switch hardware rates Increasing ubiquity of IPv6 (with longer 128-bit IP addresses) in network core 4

  5. SPINE Contributions SPINE: practical solution to prevent an adversary along an end-to-end path from observing source and destination IP addresses. Processing performed at switch hardware rates No cooperation from intermediate autonomous systems No involvement from end users Flow-packet unlinkability 5

  6. Encrypting Relevant Header Fields How do we prevent information leakage from IP addresses and TCP sequence/acknowledgment numbers? Encryption! Central Controller SPINE Tables SPINE Tables and Keys and Keys Trusted Trusted Entity Entity #1 #1 Trusted Trusted Entity Entity #2 #2 Untrusted Untrusted Entity Entity SPINE SPINE R R1 1 R R2 2 Original Traffic SPINE (encrypted) Traffic 6

  7. Efficient Cryptography on Header Fields One-time pad encryption requires only one XOR operation Encrypt(ip, k) = ip H(k, nonce) ip: IP address (or TCP seq/ack no.) k: secret key nonce: public randomly-generated bit string H: keyed hash function Different nonce for each packet flow-packet unlinkability Nonce Nonce Hash Hash Function Function Original IPv4 Original IPv4 Address Address One One- - Time Pad Time Pad Encrypted Encrypted IPv4 Address IPv4 Address 7

  8. Rotating Encryption Keys We want: No repeated one-time pads To thwart authorities who might demand packet decryption Solution: rotate keys To prevent inconsistency, we use version numbers and remember old keys for t seconds 8

  9. Challenges with Encrypting IP Addresses Sending encryption metadata with packet Discerning which traffic is SPINE traffic Ensuring successful routing Solution: we need more space in the header Solution: we need more space in the header IPv6 IPv6 9

  10. SPINE Example Encrypt and replace IPv4 header with IPv6 header Decrypt and restore original IPv4 header Trusted Trusted Entity Entity #1 #1 Trusted Trusted Entity Entity #2 #2 Untrusted Untrusted Entity Entity SPINE SPINE R R1 1 R R2 2 Host B Host B Host A Host A Original Traffic SPINE (encrypted) Traffic 10

  11. IPv4 to IPv6 Header Transformation Most fields transferred directly New IPv6 address Encrypted IPv4 address Encryption metadata Reserved IPv6 prefix owned and announced by receiving trusted entity but no services offered there Version Version # # Encrypted Encrypted IPv4 Address IPv4 Address Reserved IPv6 Prefix Reserved IPv6 Prefix Nonce Nonce New IPv6 Address New IPv6 Address 11

  12. P4 Implementation Advent of high-speed programmable data planes packet manipulation P4 programs meant to run at line rates If it fits, it runs Limit on operations (e.g., one-time pad encryption) P4 programs: series of match-action tables 12

  13. P4 Pipeline Central Controller Central Controller SPINE SPINE Tables Tables Routing Routing Tables Tables Trusted Trusted Entity #2 Entity #2 Trusted Trusted Entity #1 Entity #1 Untrusted Untrusted Entity Entity SPINE SPINE R R1 1 R R2 2 SPINE Program Check IPv4 Check IPv4 Dst Dst Addr Addr Encrypt if Encrypt if necessary necessary Check IPv6 Check IPv6 Dst Dst Addr Addr Decrypt if Decrypt if necessary necessary Set Set Deparse Deparse headers headers Parse Parse headers headers forwarding forwarding port port 13

  14. P4 Prototype and Resource Requirements Nonce generation: P4 random() function Hash function: SipHash Pseudorandom function Fast on short inputs Central controller that controls keys and versions Resource Requirements: ~140 KB Ran simulations on Mininet software simulator Working on running SPINE on Barefoot Tofino switches 14

  15. Conclusion Header fields can leak information to intermediate networks Developed SPINE to combat this threat No cooperation from intermediate autonomous systems No involvement from end users Uses efficient encryption and implementable in P4 Using IPv6 bits for encryption purposes Github repo: https://github.com/SPINE-P4/spine-code Thank you for your time! 15

  16. Why do we need SipHash? SipHash is a pseudorandom function PRF f f and key k k Given x x, f(k, x) f(k, x), and y y, an attacker cannot guess f(k, y) One-time pad encryption: E( E(ip ip) ) = ip ip p p, where p p = f(k, nonce) ip ip E( E(ip ip) ) = p p Attacker can send packet with IP address ip ip, observe E( E(ip ip) ), and recover p p If f f is not a PRF, then p p can leak information about k k f(k, y) f(k, nonce) 16

Related


No related presentations.

More Related Content