On the Reliability of Current Generation Network Eavesdropping Tools
Embargo Date
Related Collections
Degree type
Discipline
Subject
electronic interception
eavesdropping countermeasures
Funder
Grant number
License
Copyright date
Distributor
Related resources
Contributor
Abstract
This paper analyzes the problem of interception of Internet traffic from the eavesdropper's point of view. We examine the reliability and accuracy of transcripts, and show that obtaining "high fidelity" transcripts is harder than previously assumed. Even in highly favorable situations, such as capturing unencrypted traffic using standard protocols, simple -- and entirely unilateral -- countermeasures are shown to be sufficient to prevent accurate traffic analysis in many Internet interception configurations. In particular, these countermeasures were successful against every available eavesdropping system we tested. Central to our approach is a new class of techniques that we call confusion, which, unlike cryptography or steganography, does not require cooperation by the communicating parties and, in some case, can be employed entirely by a third party not involved in the communication at all.
Advisor
Date of presentation
Conference name
Conference dates
Conference location
Date Range for Data Collection (Start Date)
Date Range for Data Collection (End Date)
Digital Object Identifier
Series name and number
Volume number
Issue number
Publisher
Publisher DOI
Comments
Postprint version. Published in International Federation for Information Processing, Volume 222, Advances in Digital Forensics II, edited by Martin S. Olivier, Sujeet Shenoi (Boston: Springer, 2006), pages 199-214.