ScrambleSuit: A Polymorphic Network Protocol to Circumvent Censorship
2013 (English)Conference paper (Refereed)
Deep packet inspection technology became a cornerstone of Internet censorship by facilitating cheap and effective filtering of what censors consider undesired information. Moreover, filtering is not limited to simple pattern matching but makes use of sophisticated techniques such as active probing and protocol classification to block access to popular circumvention tools such as Tor. In this paper, we propose ScrambleSuit; a thin protocol layer above TCP whose purpose is to obfuscate the transported application data. By using morphing techniques and a secret exchanged out-of-band, we show that ScrambleSuit can defend against active probing and other fingerprinting techniques such as protocol classification and regular expressions. We finally demonstrate that our prototype exhibits little overhead and enables effective and lightweight obfuscation for application layer protocols.
Place, publisher, year, edition, pages
ACM Press, 2013.
Tor, bridge, pluggable transport, active probing, traffic analysis, censorship, circumvention
Research subject Computer Science
IdentifiersURN: urn:nbn:se:kau:diva-29031OAI: oai:DiVA.org:kau-29031DiVA: diva2:647984
Workshop on Privacy in the Electronic Society, Berlin 4 november