Title :
Applying network address encryption to anonymity and preventing data exfiltration
Author :
Trostle, Jonathan
Author_Institution :
Appl. Phys. Lab., Johns Hopkins Univ., Laurel, MD
Abstract :
Two existing network security problems are ensuring anonymous communications and preventing data exfiltration through network covert channels. We present a new concept in network addressing: one-time encrypted network addresses. We describe a particular instantiation: one-time CPP addresses. We then show how one-time encrypted addresses can prevent intersection and other traffic analysis attacks that can undermine low-latency anonymous communications. We show how one-time encrypted addresses can also be used, with certain assumptions, to greatly reduce network covert channels. Thus one-time encrypted network addresses, when combined with other network security countermeasures, are able to provide a back-up defense against malicious software on hosts that attempt to ldquophone homerdquo in order to leak confidential information, including location information. We describe how these techniques can be used to protect confidential data in a MANET.
Keywords :
ad hoc networks; cryptography; mobile radio; telecommunication security; telecommunication traffic; wireless channels; MANET; data exfiltration prevention; low-latency anonymous communication; mobile ad hoc network; network address encryption; network channel; network security; traffic analysis attack; Circuits; Cryptography; Data security; Information security; Laboratories; Physics; Protection; Real time systems; Telecommunication traffic; Timing;
Conference_Titel :
Military Communications Conference, 2008. MILCOM 2008. IEEE
Conference_Location :
San Diego, CA
Print_ISBN :
978-1-4244-2676-8
Electronic_ISBN :
978-1-4244-2677-5
DOI :
10.1109/MILCOM.2008.4753212
