Sam Burnett
Abstract
Despite the pervasiveness of Internet censorship, we have scant data on its extent, mechanisms, and evolution. Measuring censorship is challenging: it requires continual measurement of reachability to many target sites from diverse vantage points. Amassing suitable vantage points for longitudinal measurement is difficult; existing systems have achieved only small, short-lived deployments. We observe, however, that most Internet users access content via Web browsers, and the very nature of Web site design allows browsers to make requests to domains with different origins than the main Web page. We present Encore, a system that harnesses cross-origin requests to measure Web filtering from a diverse set of vantage points without requiring users to install custom software, enabling longitudinal measurements from many vantage points. We explain how Encore induces Web clients to perform cross-origin requests that measure Web filtering, design a distributed platform for scheduling and collecting these measurements, show the feasibility of a global-scale deployment with a pilot study and an analysis of potentially censored Web content, identify several cases of filtering in six months of measurements, and discuss ethical concerns that would arise with widespread deployment.
Supplemental Material
- S. Aryan, H. Aryan, and J. A. Halderman. Internet Censorship in Iran: A First Look. In USENIX Workshop on Free and Open Communications on the Internet (FOCI), aug 2013.Google Scholar
- A. Barth, J. Caballero, and D. Song. Secure content sniffing for web browsers, or how to stop papers from reviewing themselves. In IEEE Symposium on Security and Privacy, pages 360--371, 2009. Google ScholarDigital Library
- M. bin Tariq, M. Motiwala, N. Feamster, and M. Ammar. Detecting Network Neutrality Violations with Causal Inference. In Proc. CoNEXT, Dec. 2009. Google ScholarDigital Library
- Bootstrap. http://getbootstrap.com.Google Scholar
- A. Bortz and D. Boneh. Exposing private information by timing web applications. In International Conference on World Wide Web (WWW), pages 621--628, Banff, Alberta, Canada, 2007. Google ScholarDigital Library
- Browser Security Handbook: Navigation and Content Inclusion Across Domains. http://goo.gl/uMfTN5.Google Scholar
- M. Casado and M. J. Freedman. Peering through the shroud: The effect of edge opacity on ip-based client identification. In USENIX Conference on Networked Systems Design and Implementation (NSDI), Cambridge, MA, Apr. 2007. Google ScholarDigital Library
- Centinel. https://github.com/iclab/centinel.Google Scholar
- M. Clark. IRB/Ethics Questions, Sept. 2014. http://encore.noise.gatech.edu/irb-mail.txt.Google Scholar
- R. Clayton, S. Murdoch, and R. Watson. Ignoring the Great Firewall of China. In Privacy Enhancing Technologies (PET), pages 20--35. Springer, 2006. Google ScholarDigital Library
- J. Crandall, D. Zinn, M. Byrd, E. Barr, and R. East. ConceptDoppler: A Weather Tracker for Internet Censorship. In Proceedings of the ACM Conference on Computer and Communications Security (CCS), Arlington, VA, Oct. 2007. Google ScholarDigital Library
- R. Dingledine, N. Mathewson, and P. Syverson. Tor: The second-generation onion router. In Proc. 13th USENIX Security Symposium, San Diego, CA, Aug. 2004. Google ScholarDigital Library
- K. P. Dyer, S. E. Coull, T. Ristenpart, and T. Shrimpton. Protocol misidentification made easy with format-transforming encryption. In ACM Conference on Computer & Communications Security (CCS), pages 61--72, 2013. Google ScholarDigital Library
- R. Ensafi, J. Knockel, G. Alexander, and J. R. Crandall. Detecting intentional packet drops on the internet via tcp/ip side channels. In Passive and Active Measurement, pages 109--118. Springer, 2014. Google ScholarDigital Library
- A. Filasto and J. Appelbaum. OONI: Open Observatory of Network Interference. In USENIX Workshop on Free and Open Communications on the Internet (FOCI), Aug. 2012.Google Scholar
- Filbaan. http://filbaan.net.Google Scholar
- Google analytics. https://google.com/analytics.Google Scholar
- Google Transparency Report. http://www.google.com/transparencyreport/.Google Scholar
- GreatFire.org: Online Censorship in China. http://en.greatfire.org/.Google Scholar
- K. P. Gummadi, S. Saroiu, and S. D. Gribble. King: Estimating latency between arbitrary internet end hosts. In Proceedings of the 2nd ACM SIGCOMM Workshop on Internet measurment, pages 5--18. ACM, 2002. Google ScholarDigital Library
- S. Hao, N. Syed, N. Feamster, A. Gray, and S. Krasser. Detecting Spammers with SNARE: Spatio-temporal Network-level Automatic Reputation Engine. In Proc. 18th USENIX Security Symposium, Montreal, Quebec, Canada, Aug. 2009. Google ScholarDigital Library
- HAR 1.2 spec. http://www.softwareishard.com/blog/har-12-spec/.Google Scholar
- HerdictWeb: The Verdict of the Herd. http://herdict.org.Google Scholar
- Herdict: Browse Lists. http://herdict.org/lists. Visited 2014-02-26.Google Scholar
- F. Howard. Malware with your mocha: Obfuscation and antiemulation tricks in malicious javascript. Sophos Technical Papers, 2010.Google Scholar
- L.-S. Huang, Z. Weinberg, C. Evans, and C. Jackson. Protecting browsers from cross-origin CSS attacks. In ACM Conference on Computer and Communications Security (CCS), pages 619--629, Chicago, IL, Oct. 2010. Google ScholarDigital Library
- B. Jones, R. Ensafi, N. Feamster, V. Paxson, and N. Weaver. Ethical concerns for censorship measurement (to appear). In Ethics in Networked Systems Research, Aug. 2015. Google ScholarDigital Library
- jQuery. http://jquery.com.Google Scholar
- M. Karir, G. Huston, G. Michaelson, and M. Bailey. Understanding IPv6 Populations in the Wild. In Passive and Active Measurement (PAM), pages 256--259, Hong Kong, Mar. 2013. Google ScholarDigital Library
- V. Lam, S. Antonatos, P. Akritidis, and K. G. Anagnostakis. Puppetnets: Misusing Web Browsers as a Distributed Attack Infrastructure. In ACM Conference on Computer and Communications Security (CCS), pages 221--234, Alexandria, VA, Oct. 2006. Google ScholarDigital Library
- MaxMind GeoIP Country. http://www.maxmind.com/app/geolitecountry. Retrieved: June 2011.Google Scholar
- Z. Nabi. The anatomy of web censorship in Pakistan. In USENIX Workshop on Free and Open Communications on the Internet (FOCI13), Washington, DC, Aug. 2013.Google Scholar
- Noction: Network Intelligence. http://www.noction.com.Google Scholar
- Workshop on Ethics in Networked Systems Research. http://conferences.sigcomm.org/sigcomm/2015/netethics.php.Google Scholar
- OpenNet Initiative. http://www.opennet.net/.Google Scholar
- OpenNet Initiative Research Publications. http://www.opennet.net/research/.Google Scholar
- Report on China's Filtering Practices, 2008. Open Net Initiative. http://opennet.net/sites/opennet.net/files/china.pdf.Google Scholar
- Open Observatory of Network Interference (OONI). https://ooni.torproject.org.Google Scholar
- Phantomjs. http://phantomjs.org.Google Scholar
- Same Origin Policy. https://developer.mozilla.org/en-US/docs/Web/JavaScript/Same_origin_policy_for_JavaScript. Mozilla Developer Network.Google Scholar
- S. Schechter and C. Bravo-Lillo. Ethical-response survey report: Fall 2014. Technical Report MSR-TR-2014-140, November 2014.Google Scholar
- A. Sfakianakis, E. Athanasopoulos, and S. Ioannidis. CensMon: A Web Censorship Monitor. In USENIX Workshop on Free and Open Communication on the Internet (FOCI), San Francisco, CA, Aug. 2011.Google Scholar
- How to add a favicon to your site. http://www.w3.org/2005/10/howto-favicon.Google Scholar
- P. Winter. Towards a Censorship Analyser for Tor. In USENIX Workshop on Free and Open Communications on the Internet (FOCI), Washington, DC, Aug. 2013.Google Scholar
- Content security policy. http://www.w3.org/TR/CSP/, Nov. 2012.Google Scholar
- X. Xu, Z. M. Mao, and J. A. Halderman. Internet censorship in China: Where does the filtering occur? In Passive and Active Measurement (PAM), pages 133--142, Atlanta, GA, 2011. Google ScholarDigital Library
- J. Zittrain and B. Edelman. Internet filtering in China. IEEE Internet Computing, 7(2):70--77, 2003. Google ScholarDigital Library
Index Terms
- Encore: Lightweight Measurement of Web Censorship with Cross-Origin Requests
Recommendations
Encore: Lightweight Measurement of Web Censorship with Cross-Origin Requests
SIGCOMM '15: Proceedings of the 2015 ACM Conference on Special Interest Group on Data CommunicationDespite the pervasiveness of Internet censorship, we have scant data on its extent, mechanisms, and evolution. Measuring censorship is challenging: it requires continual measurement of reachability to many target sites from diverse vantage points. ...
Web Filtering and Censoring
Information on the Web is not as uncontrolled as it may appear.
Practical end-to-end web content integrity
WWW '12: Proceedings of the 21st international conference on World Wide WebWidespread growth of open wireless hotspots has made it easy to carry out man-in-the-middle attacks and impersonate web sites. Although HTTPS can be used to prevent such attacks, its universal adoption is hindered by its performance cost and its ...
Comments