On traffic analysis attacks and countermeasures

Fu, Xinwen

dc.contributor.advisor	Bettati, Riccardo
dc.contributor.advisor	Zhao, Wei
dc.creator	Fu, Xinwen
dc.date.accessioned	2007-04-25T20:14:34Z
dc.date.available	2007-04-25T20:14:34Z
dc.date.created	2005-12
dc.date.issued	2007-04-25
dc.identifier.uri	https://hdl.handle.net/1969.1/4968
dc.description.abstract	Security and privacy have gained more and more attention with the rapid growth and public acceptance of the Internet as a means of communication and information dissemination. Security and privacy of a computing or network system may be compromised by a variety of well-crafted attacks. In this dissertation, we address issues related to security and privacy in computer network systems. Specifically, we model and analyze a special group of network attacks, known as traffic analysis attacks, and develop and evaluate their countermeasures. Traffic analysis attacks aim to derive critical information by analyzing traffic over a network. We focus our study on two classes of traffic analysis attacks: link-load analysis attacks and flow-connectivity analysis attacks. Our research has made the following conclusions: 1. We have found that an adversary may effectively discover link load by passively analyzing selected statistics of packet inter-arrival times of traffic flows on a network link. This is true even if some commonly used countermeasures (e.g., link padding) have been deployed. We proposed an alternative effective countermeasure to counter this passive traffic analysis attack. Our extensive experimental results indicated this to be an effective approach. 2. Our newly proposed countermeasure may not be effective against active traffic analysis attacks, which an adversary may also use to discover the link load. We developed methodologies in countering these kinds of active attacks. 3. To detect the connectivity of a flow, an adversary may embed a recognizable pattern of marks into traffic flows by interference. We have proposed new countermeasures based on the digital filtering technology. Experimental results have demonstrated the effectiveness of our method. From our research, it is obvious that traffic analysis attacks present a serious challenge to the design of a secured computer network system. It is the objective of this study to develop robust but cost-effective solutions to counter link-load analysis attacks and flow-connectivity analysis attacks. It is our belief that our methodology can provide a solid foundation for studying the entire spectrum of traffic analysis attacks and their countermeasures.	en
dc.format.extent	1677217 bytes	en
dc.format.medium	electronic	en
dc.format.mimetype	application/pdf
dc.language.iso	en_US
dc.publisher	Texas A&M University
dc.subject	Traffic Analysis	en
dc.subject	Attacks	en
dc.title	On traffic analysis attacks and countermeasures	en
dc.type	Book	en
dc.type	Thesis	en
thesis.degree.department	Computer Science	en
thesis.degree.discipline	Computer Engineering (CPEN)	en
thesis.degree.grantor	Texas A&M University	en
thesis.degree.name	Doctor of Philosophy	en
thesis.degree.level	Doctoral	en
dc.contributor.committeeMember	Loguinov, Dmitri
dc.contributor.committeeMember	Reddy, Narasimha
dc.type.genre	Electronic Dissertation	en
dc.type.material	text	en
dc.format.digitalOrigin	born digital	en

Files in this item

Name:: etd-tamu-2005C-CPEN-Fu.pdf
Size:: 1.599Mb
Format:: PDF

View/ Open

This item appears in the following Collection(s)

Electronic Theses, Dissertations, and Records of Study (2002– )
Texas A&M University Theses, Dissertations, and Records of Study (2002– )

Show simple item record