Return to search

On traffic analysis attacks and countermeasures

Security and privacy have gained more and more attention with the rapid growth and
public acceptance of the Internet as a means of communication and information
dissemination. Security and privacy of a computing or network system may be
compromised by a variety of well-crafted attacks.
In this dissertation, we address issues related to security and privacy in computer
network systems. Specifically, we model and analyze a special group of network attacks,
known as traffic analysis attacks, and develop and evaluate their countermeasures.
Traffic analysis attacks aim to derive critical information by analyzing traffic over a
network. We focus our study on two classes of traffic analysis attacks: link-load analysis
attacks and flow-connectivity analysis attacks.
Our research has made the following conclusions:
1. We have found that an adversary may effectively discover link load by passively
analyzing selected statistics of packet inter-arrival times of traffic flows on a
network link. This is true even if some commonly used countermeasures (e.g.,
link padding) have been deployed. We proposed an alternative effective countermeasure to counter this passive traffic analysis attack. Our extensive
experimental results indicated this to be an effective approach.
2. Our newly proposed countermeasure may not be effective against active traffic
analysis attacks, which an adversary may also use to discover the link load. We
developed methodologies in countering these kinds of active attacks.
3. To detect the connectivity of a flow, an adversary may embed a recognizable
pattern of marks into traffic flows by interference. We have proposed new
countermeasures based on the digital filtering technology. Experimental results
have demonstrated the effectiveness of our method.
From our research, it is obvious that traffic analysis attacks present a serious
challenge to the design of a secured computer network system. It is the objective of this
study to develop robust but cost-effective solutions to counter link-load analysis attacks
and flow-connectivity analysis attacks. It is our belief that our methodology can provide
a solid foundation for studying the entire spectrum of traffic analysis attacks and their
countermeasures.

Identiferoai:union.ndltd.org:tamu.edu/oai:repository.tamu.edu:1969.1/4968
Date25 April 2007
CreatorsFu, Xinwen
ContributorsBettati, Riccardo, Zhao, Wei
PublisherTexas A&M University
Source SetsTexas A and M University
Languageen_US
Detected LanguageEnglish
TypeBook, Thesis, Electronic Dissertation, text
Format1677217 bytes, electronic, application/pdf, born digital

Page generated in 0.0022 seconds