- Library Home /
- Search Collections /
- Open Collections /
- Browse Collections /
- UBC Theses and Dissertations /
- A differentially private network traffic shaping framework
Open Collections
UBC Theses and Dissertations
UBC Theses and Dissertations
A differentially private network traffic shaping framework Sabzi, Amir
Abstract
Many Internet applications depend exclusively on end-to-end encryption of network traffic as the primary means to guarantee the users' privacy. However, encryption alone cannot prevent network side-channel attacks--leaks of sensitive information through the sizes and timing of network packets. We present NetShaper, a traffic shaping framework to mitigate network side-channel attacks. NetShaper’s traffic shaping provides differential privacy guarantees, allowing users to adjust the trade-off between privacy guarantees and bandwidth overhead according to their specific requirements. We design NetShaper as a modular tunnel endpoint that can be deployed anywhere along the path of traffic. We implement a simulator to assess the privacy and bandwidth trade-offs of our framework and demonstrate its applicability in a video streaming and a web service and its effectiveness in thwarting state-of-the-art network side-channel attacks.
Item Metadata
| Title |
A differentially private network traffic shaping framework
|
| Creator | |
| Supervisor | |
| Publisher |
University of British Columbia
|
| Date Issued |
2023
|
| Description |
Many Internet applications depend exclusively on end-to-end encryption of network traffic as the primary means to guarantee the users' privacy. However, encryption alone cannot prevent network side-channel attacks--leaks of sensitive information through the sizes and timing of network packets. We present NetShaper, a traffic shaping framework to mitigate network side-channel attacks. NetShaper’s traffic shaping provides differential privacy guarantees, allowing users to adjust the trade-off between privacy guarantees and bandwidth overhead according to their specific requirements. We design NetShaper as a modular tunnel endpoint that can be deployed anywhere along the path of traffic. We implement a simulator to assess the privacy and bandwidth trade-offs of our framework and demonstrate its applicability in a video streaming and a web service and its effectiveness in thwarting state-of-the-art network side-channel attacks.
|
| Genre | |
| Type | |
| Language |
eng
|
| Date Available |
2023-09-28
|
| Provider |
Vancouver : University of British Columbia Library
|
| Rights |
Attribution-NonCommercial-NoDerivatives 4.0 International
|
| DOI |
10.14288/1.0436913
|
| URI | |
| Degree (Theses) | |
| Program (Theses) | |
| Affiliation | |
| Degree Grantor |
University of British Columbia
|
| Graduation Date |
2023-11
|
| Campus | |
| Scholarly Level |
Graduate
|
| Rights URI | |
| Aggregated Source Repository |
DSpace
|
Item Media
Item Citations and Data
Rights
Attribution-NonCommercial-NoDerivatives 4.0 International