基于侧信道攻击的匿名通信流量识别、分析和追踪技术研究

项目名称： 基于侧信道攻击的匿名通信流量识别、分析和追踪技术研究

项目编号： No.61272054

项目类型： 面上项目

立项/批准年度： 2013

项目学科： 自动化技术、计算机技术

项目作者： 杨明

作者单位： 东南大学

项目金额： 85万元

中文摘要： 针对匿名滥用问题，青年基金项目采用主动流量分析技术进行了匿名通信追踪技术的研究。在通信流层，针对SSH单代理匿名通信系统提出了基于RTT统计特性的目标站点分析方法，针对多代理匿名系统设计了基于直序扩频编码、时隙质心载体的流水印追踪方案。通过调制Tor信元间隔，实现了在匿名协议层嵌入隐蔽信号的高效追踪机制。在内容层，提出了基于LSP报文的Anonymizer通信关系确认方案和基于隐秘流量生成器的匿名Web流量追踪方法。这些工作已被TON、INFOCOM、FGCS、JNCA等国际期刊和会议录用或发表。 拟开展的后续工作是目前研究的进一步深入和扩展，将首先提出快速、高效的匿名通信流量识别方法，在此基础上选择合适的网络流特征对匿名通信流量进行上层应用分类，重点针对HTTP等典型匿名通信流量，进一步设计基于流量指纹的内容分析方法以推测潜在的通信目标，并制定自适应的流水印追踪方案对通信关系进行确认。

中文关键词： 匿名通信；侧信道攻击；流量识别；流量分析；网络流水印

英文摘要： Since anonymous abuses render a great challenge for network security, our NSFC project in progress focuses on the traceback of anonymous communications by exploiting active traffic analysis techniques. On the network traffic layer, the target sites can be effectively identified by measuring sample mean and sample variance of the round-trip time (RTT) between a suspected user and websites over single SSH proxy. The novel watermarking mechanism was further proposed for tracing anonymous traffic over multi-agent anonymous system, which exploits both direct sequence spread spectrum coding and the interval centroid-based watermarking method. To achieve efficient traceback on the anonymous protocol layer, some hidden signals are embedded into the packet flow by modulating the delay of cells in Tor anonymous network. On the communication content layer, the tracking method for confirming communication relationships over the Anonymizer network was proposed by utilizing the Least Significant Packet (LSP) concept. Furthermore, a novel anonymous web traffic tracking method was designed by using the Secret Traffic Generator. These results have been accepted or published by the international journals of TON, FGCS, JNCA, and other conferences such as INFOCOM, respectively. The follow-up work aims to further deepen and expand t

英文关键词： Anonymous Communication；Side Channel Attack；Traffic Identification；Traffic Analysis；Network Watermarking