Protocol-level hidden server discovery

Author

Zhen Ling ; Junzhou Luo ; Kui Wu ; Xinwen Fu

fYear

2013

fDate

14-19 April 2013

Firstpage

1043

Lastpage

1051

Abstract

Tor hidden services are commonly used to provide a TCP based service to users without exposing the hidden server´s IP address in order to achieve anonymity and anti-censorship. However, hidden services are currently abused in various ways. Illegal content such as child pornography has been discovered on various Tor hidden servers. In this paper, we propose a protocollevel hidden server discovery approach to locate the Tor hidden server that hosts the illegal website. We investigate the Tor hidden server protocol and develop a hidden server discovery system, which consists of a Tor client, a Tor rendezvous point, and several Tor entry onion routers. We manipulate Tor cells, the basic transmission unit over Tor, at the Tor rendezvous point to generate a protocol-level feature at the entry onion routers. Once our controlled entry onion routers detect such a feature, we can confirm the IP address of the hidden server. We conduct extensive analysis and experiments to demonstrate the feasibility and effectiveness of our approach.

Keywords

IP networks; client-server systems; computer network security; telecommunication network routing; transport protocols; IP address; TCP-based service; Tor cells; Tor client; Tor entry onion routers; Tor hidden server localisation; Tor hidden server protocol; Tor rendezvous point; anonymous communication; hidden services; illegal Web site; illegal content; protocol-level hidden server discovery; transmission unit; Correlation; IP networks; Relays; Routing protocols; Servers; Timing; Anonymous Communication; Hidden Service; Tor;

fLanguage

English

Publisher

ieee

Conference_Titel

INFOCOM, 2013 Proceedings IEEE

Conference_Location

Turin

ISSN

0743-166X

Print_ISBN

978-1-4673-5944-3

Type

conf

DOI

10.1109/INFCOM.2013.6566894

Filename

6566894