Non-expanding transaction specific pseudonymization for IP traffic monitoring

Authors:
Lasse Øverlier;Tønnes Brekne;André Årnes
Affiliations:
Norwegian Defence Research Establishment, Kjeller, Norway;Centre for Quantifiable Quality of Service in Communication Systems, Norwegian University of Science and Technology, Trondheim, Norway;Centre for Quantifiable Quality of Service in Communication Systems, Norwegian University of Science and Technology, Trondheim, Norway
Venue:
CANS'05 Proceedings of the 4th international conference on Cryptology and Network Security
Year:
2005

Citing 13
Cited 2

The dining cryptographers problem: unconditional sender and recipient untraceability

Journal of Cryptology
Pseudonymous audit for privacy enhanced intrusion detection

SEC'97 Proceedings of the IFIP TC11 13 international conference on Information Security (SEC '97) on Information security in research and business
Untraceable electronic mail, return addresses, and digital pseudonyms

Communications of the ACM
Anonymity, unobservability, and pseudeonymity — a proposal for terminology

International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability
Traffic analysis: protocols, attacks, design issues, and open problems

International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability
On pseudonymization of audit data for intrusion detection

International workshop on Designing privacy enhancing technologies: design issues in anonymity and unobservability
On the design and performance of prefix-preserving IP traffic trace anonymization

IMW '01 Proceedings of the 1st ACM SIGCOMM Workshop on Internet Measurement
Handbook of Applied Cryptography

Handbook of Applied Cryptography
Prefix-Preserving IP Address Anonymization: Measurement-Based Security Evaluation and a New Cryptography-Based Scheme

ICNP '02 Proceedings of the 10th IEEE International Conference on Network Protocols
Pseudonym Systems

SAC '99 Proceedings of the 6th Annual International Workshop on Selected Areas in Cryptography
An Efficient System for Non-transferable Anonymous Credentials with Optional Anonymity Revocation

EUROCRYPT '01 Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology
A high-level programming environment for packet trace anonymization and transformation

Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications
Anonymization of IP traffic monitoring data: attacks on two prefix-preserving anonymization schemes and some proposed remedies

PET'05 Proceedings of the 5th international conference on Privacy Enhancing Technologies

On web browsing privacy in anonymized NetFlows

SS'07 Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium
A taxonomy and adversarial model for attacks against network log anonymization

Proceedings of the 2009 ACM symposium on Applied Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper presents a scheme for transaction pseudonymization of IP address data in a distributed passive monitoring infrastructure. The approach provides high resistance against traffic analysis and injection attacks, and it provides a technique for gradual release of data through a key management scheme. The scheme is non-expanding, and it should be suitable for hardware implementations for high-bandwidth monitoring systems.