Series
Institute for Information Security & Privacy Cybersecurity Lecture Series

Permanent Link
https://hdl.handle.net/1853/70914
Series Type
Event Series
Description
Associated Organization(s)
Associated Organization(s)
Organizational Unit
Organizational Unit

Filters
2020 1
1
1
1
1
Reset filters

Settings
Author: Bock, Kevin × End date: 2022 × Start date: 2020 × search.filters.applied.f.isSeriesOfPublicationTitle: Institute for Information Security & Privacy Cybersecurity Lecture Series ×

Publication Search Results

Now showing 1 - 1 of 1
  • Thumbnail Image
    Item
    Automating the Discovery of Censorship Evasion Strategies
    (Georgia Institute of Technology, 2020-09-11) Bock, Kevin
    Researchers and censoring regimes have long engaged in a cat-and-mouse game, leading to increasingly sophisticated censorship techniques and methods to evade them. Unfortunately, censors have long had an inherent advantage in this arms race, because discovering new censorship evasion techniques has, to date, been a laborious, manual process. Details of censors' infrastructure and implementation are generally not publicly known, and thus researchers typically must first measure and develop an understanding of how a particular censor works before they can develop strategies to evade them.I propose to evaluate the following thesis: It is possible to efficiently automate the discovery of censorship evasion techniques under all deployment scenarios. There are four possible ways to deploy a censorship evasion mechanism: at the client-side, at the server-side, at both, or at neither (via an o -path third-path). My work will develop techniques for automatically discovering evasion strategies in all of these deployment scenarios.The foundation of my approach is my prior work Geneva, a genetic algorithm that discovers novel censorship evasion strategies that run at either the client or the server. Geneva has discovered dozens of new censorship evasion strategies against real-world censors, including the rst ever strategies that can be run exclusively from the server. In the first part of my proposal, I review the design of Geneva and its results from real deployments. In the second part, I propose developing automated censorship evasion techniques for the remaining two deployment scenarios: joint client/server evasion and o -path third-party evasion. I also propose to extend Geneva to be able to automatically identify new application-layer evasion techniques exclusively at the client or the server.