ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
High-speed prefix-preserving IP address anonymization for passive measurement systems
Full text PdfPdf (1.04 MB)
Source IEEE/ACM Transactions on Networking (TON) archive
Volume 15 ,  Issue 1  (February 2007) table of contents
Pages: 26 - 39  
Year of Publication: 2007
ISSN:1063-6692
Authors
Ramaswamy Ramaswamy  Department of Electrical and Computer Engineering, University of Massachusetts, Amherst, MA
Tilman Wolf  Department of Electrical and Computer Engineering, University of Massachusetts, Amherst, MA
Publisher
IEEE Press  Piscataway, NJ, USA
Bibliometrics
Downloads (6 Weeks): 12,   Downloads (12 Months): 56,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: 10.1109/TNET.2006.890128

ABSTRACT

Passive network measurement and packet header trace collection are vital tools for network operation and research. To protect a user's privacy, it is necessary to anonymize header fields, particularly IP addresses. To preserve the correlation between IP addresses, prefix-preserving anonymization has been proposed. The limitations of this approach for a high-performance measurement system are the need for complex cryptographic computations and potentially large amounts of memory. We propose a new prefix-preserving anonymization algorithm, top-hash subtree-replicated anonymization (TSA), that features three novel improvements: precomputation, replicated subtrees, and top hashing. TSA makes anonymization practical to be implemented on network processors or dedicated logic at Gigabit rates. The performance of TSA is compared with a conventional cryptography based prefix-preserving anonymization scheme which utilizes caching. TSA performs better as it requires no online cryptographic computation and a small number of memory lookups per packet. Our analytic comparison of the susceptibility to attacks between conventional anonymization and our approach shows that TSA performs better for small scale attacks and comparably for medium scale attacks. The processing cost for TSA is reduced by two orders of magnitude and the memory requirements are a few Megabytes. The ability to tune the memory requirements and security level makes TSA ideal for a broad range of network systems with different capabilities.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
[1] Route Views Project Page. Advanced Network Technology Center, University of Oregon, 2003 [Online]. Available: http://www.route-views.org/
 
2
[2] S. Bhattacharyya and S. Moon, "Network monitoring and measurements: Techniques and experience," presented at the ACM Sigmetrics 2002, Tutorial, Marina Del Rey, CA, Jun. 2002.
3
Chuck Cranor , Yuan Gao , Theodore Johnson , Vlaidslav Shkapenyuk , Oliver Spatscheck, Gigascope: high performance network monitoring with an SQL interface, Proceedings of the 2002 ACM SIGMOD international conference on Management of data, June 03-06, 2002, Madison, Wisconsin  [doi>10.1145/564691.564777]
 
4
[4] C. Fraleigh, C. Diot, B. Lyles, S. B. Moon, P. Owezarski, D. Papagiannaki, and F. A. Tobagi, "Design and deployment of a passive monitoring infrastructure," presented at the Passive and Active Measurement Workshop (PAM2001), Amsterdam, The Netherlands, Apr. 2001.
 
5
[5] Intel IXP2400 Network Processor. Intel Corp., 2004.
 
6
[6] G. Minshall, TCPDPRIV. Lawrence Berkeley Lab. [Online]. Available: http://ita.ee.lbl.gov/html/contrib/tcpdpriv.html
 
7
[7] Advanced Encryption Standard (AES), FIPS 197, National Institute of Standards and Technology, 2001.
 
8
[8] Active Measurement Project, National Laboratory for Applied Network Research, 2005 [Online]. Available: http://watt.nlanr.net/
 
9
[9] Passive Measurement and Analysis, National Laboratory for Applied Network Research--Passive Measurement and Analysis, 2003 [On-line]. Available: http://pma.nlanr.net/PMA/
10
Ruoming Pang , Vern Paxson, A high-level programming environment for packet trace anonymization and transformation, Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications, August 25-29, 2003, Karlsruhe, Germany  [doi>10.1145/863955.863994]
11
Markus Peuhkuri, A method to compress and anonymize packet traces, Proceedings of the 1st ACM SIGCOMM Workshop on Internet Measurement, November 01-02, 2001, San Francisco, California, USA  [doi>10.1145/505202.505233]
 
12
[12] R. Ramaswamy and T. Wolf, "Packetbench: A tool for workload characterization of network processing," in Proc. IEEE 6th Annual Workshop on Workload Characterization, Oct. 2003, pp. 42-50.
 
13
R. Rivest, The MD5 Message-Digest Algorithm, RFC Editor, 1992
 
14
[14] Surveyor Home Page. [Online]. Available: http://www.advanced.org/ surveyor/
 
15
[15] D. E. Taylor, J. W. Lockwood, T. Sproull, J. S. Turner, and D. B. Parlour, "Scalable IP lookup for programmable routersance analysis of MD5," in Proc. ACM SIGCOMM, Cambridge, MA, Aug. 1995, pp. 77-86.
16
Joseph D. Touch, Performance analysis of MD5, Proceedings of the conference on Applications, technologies, architectures, and protocols for computer communication, p.77-86, August 28-September 01, 1995, Cambridge, Massachusetts, United States
 
17
Jun Xu , Jinliang Fan , Mostafa H. Ammar , Sue B. Moon, Prefix-Preserving IP Address Anonymization: Measurement-Based Security Evaluation and a New Cryptography-Based Scheme, Proceedings of the 10th IEEE International Conference on Network Protocols, p.280-289, November 12-15, 2002

CITED BY  2
Justin King , Kiran Lakkaraju , Adam Slagell, A taxonomy and adversarial model for attacks against network log anonymization, Proceedings of the 2009 ACM symposium on Applied Computing, March 08-12, 2009, Honolulu, Hawaii
Kari Seppänen, A fast and secure method for anonymizing packet traffic and call traces, Proceedings of the 12th WSEAS international conference on Communications, p.340-346, July 23-25, 2008, Heraklion, Greece

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.5 Local and Wide-Area Networks
          Subjects: High-speed (e.g., FDDI, fiber channel, ATM)

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)
      C.2.3 Network Operations
          Subjects: Network monitoring
  C.4 PERFORMANCE OF SYSTEMS
      Subjects: Measurement techniques


General Terms:
Management, Measurement, Security


Keywords:
anonymization, network measurement, privacy

Collaborative Colleagues:
Ramaswamy Ramaswamy: colleagues
Tilman Wolf: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player