Title:
Prefix-Preserving IP Address Anonymization: Measurement-based Security Evaluation and a New Cryptography-based Scheme

dc.contributor.author Fan, Jinliang
dc.contributor.author Ammar, Mostafa H.
dc.contributor.author Moon, Sue B.
dc.contributor.author Xu, Jun en_US
dc.date.accessioned 2005-06-17T17:41:26Z
dc.date.available 2005-06-17T17:41:26Z
dc.date.issued 2002 en_US
dc.description.abstract Real-world traffic traces are crucial for Internet research, but only a very small percentage of traces collected are made public. One major reason why traffic trace owners hesitate to make the traces publicly available is the concern that confidential and private information may be inferred from the trace. In this paper we focus on the problem of anonymizing IP addresses in a trace. More specifically, we are interested in prefix-preserving anonymization in which the prefix relationship among IP addresses is preserved in the anonymized trace, making such a trace usable in situations where prefix relationships are important. The goal of our work is two fold. First, we develop a cryptography-based, prefix-preserving anonymization technique that is provably as secure as the existing well-known TCPdpriv scheme, and unlike TCPdpriv, provides consistent prefix-preservation in large scale distributed setting. Second, we evaluate the security properties inherent in all prefix-preserving IP address anonymization schemes (including TCPdpriv). Through the analysis of Internet backbone traffic traces, we investigate the effect of some types of attacks on the security of any prefix-preserving anonymization algorithm. We also derive results for the optimum manner in which an attack should proceed, which provides a bound on the effectiveness of attacks in general. en_US
dc.format.extent 721483 bytes
dc.format.mimetype application/pdf
dc.identifier.uri http://hdl.handle.net/1853/6549
dc.language.iso en_US
dc.publisher Georgia Institute of Technology en_US
dc.relation.ispartofseries CC Technical Report; GIT-CC-02-45 en_US
dc.subject Cryptography
dc.subject Computer security
dc.subject Traffic profiles
dc.subject TCPdpriv
dc.subject IP protocols
dc.title Prefix-Preserving IP Address Anonymization: Measurement-based Security Evaluation and a New Cryptography-based Scheme en_US
dc.type Text
dc.type.genre Technical Report
dspace.entity.type Publication
local.contributor.author Ammar, Mostafa H.
local.contributor.corporatename College of Computing
local.relation.ispartofseries College of Computing Technical Report Series
relation.isAuthorOfPublication 4e51b833-e4cb-4216-8619-cd543dd0315e
relation.isOrgUnitOfPublication c8892b3c-8db6-4b7b-a33a-1b67f7db2021
relation.isSeriesOfPublication 35c9e8fc-dd67-4201-b1d5-016381ef65b8
Files
Original bundle
Now showing 1 - 1 of 1
Thumbnail Image
Name:
GIT-CC-02-45.pdf
Size:
704.57 KB
Format:
Adobe Portable Document Format
Description: