Collaborative Research: SaTC: CORE: Medium: Rethinking the Fundamentals of Tunneling Technologies for Security, Privacy, and Usability

协作研究:SaTC:核心:中:重新思考隧道技术的安全性、隐私性和可用性的基础知识

基本信息

项目摘要

Virtual Private Networks, or VPNs, are an important and integral part of the security and privacy practices of tens of millions of Americans, and of activists, journalists, and NGOs around the world that protect U.S. interests and help to carry out U.S. foreign policy. Despite the fact that the VPN ecosystem has expanded into a multi-billion dollar industry, there are many aspects of VPN security and privacy in practice that remain severely understudied and unvetted. How well does a VPN protect users against an attacker who can make educated guesses about what traffic is hidden behind the VPN? How feasible is it to hide VPN traffic so that it is not blocked? Do VPNs meet users' privacy and security expectations? How often do VPN providers follow security and privacy best practices? What are the other security and privacy best practices that should be put in place? This project is answering these questions through technical assessments, carefully designed measurements, and detailed quantitative and qualitative research.Virtual Private Networks, or VPNs, effectively form an encrypted tunnel to protect user traffic. This project aims to develop both intellectual understanding and technical and practical solutions for VPN security and privacy through four concurrent efforts: (1) building methods to ethically measure what is contained in users’ metadata and unencrypted data that needs protection; (2) analyzing how the layers of a tunnel technology interact in vulnerable ways, akin to the much better-studied theoretical limitations of network intrusion detection systems; (3) mapping out the evolving tunneling ecosystem by automating methodical exploration of different tunneling tools; (4) using quantitative and qualitative research to understand the stakeholders’ (users, providers, recommenders) needs to find the best ways to facilitate desired outcomes. These efforts combined will improve the security and privacy of tunnel technologies in all layers of the OSI network stack, from physical, link, and routing all the way through application into the human layer.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
虚拟专用网络(VPN)是数以千万计的美国人以及世界各地保护美国利益和帮助执行美国外交政策的活动家、记者和非政府组织的安全和隐私实践的重要组成部分。尽管VPN生态系统已经扩展成一个价值数十亿美元的行业,但在实践中,VPN安全和隐私的许多方面仍然严重缺乏研究和审查。VPN能很好地保护用户免受攻击者的攻击,攻击者可以对VPN背后隐藏的流量做出有根据的猜测。隐藏VPN流量以使其不被阻止的可行性有多大?VPN是否满足用户的隐私和安全期望?VPN提供商多久遵循一次安全和隐私最佳实践?应该实施的其他安全和隐私最佳实践是什么?该项目正在通过技术评估、精心设计的测量以及详细的定量和定性研究来回答这些问题。虚拟专用网络(VPN)有效地形成了一条加密隧道来保护用户流量。该项目旨在通过四项同时进行的努力,为VPN安全和隐私开发智力理解以及技术和实践解决方案:(1)建立对用户元数据和需要保护的未加密数据中包含的内容进行伦理测量的方法;(2)分析隧道技术层如何以易受攻击的方式交互,类似于更好地研究网络入侵检测系统的理论局限性;(3)通过自动化对不同隧道工具的有条不紊的探索,规划不断演变的隧道生态系统;(4)使用定量和定性研究来了解利益相关者(用户、提供商和推荐者)需要找到促进预期结果的最佳方法。这些努力结合在一起,将提高OSI网络堆栈所有层中隧道技术的安全性和隐私,从物理、链路和路由一直到应用程序到人类层。该奖项反映了NSF的法定使命,并通过使用基金会的智力优势和更广泛的影响审查标准进行评估,被认为值得支持。

项目成果

期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Roya Ensafi其他文献

Attacking Connection Tracking Frameworks as used by Virtual Private Networks
攻击虚拟专用网络使用的连接跟踪框架
  • DOI:
  • 发表时间:
    2024
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Benjamin Mixon;Jeffrey Knockel;Diwen Xue;Tarun Ayyagari;Deepak Kapur;Roya Ensafi;Jedidiah R. Crandall
  • 通讯作者:
    Jedidiah R. Crandall
CERTainty: Detecting DNS Manipulation at Scale using TLS Certificates
CERTainty:使用 TLS 证书大规模检测 DNS 操纵
Throttling Twitter: an emerging censorship technique in Russia
限制推特:俄罗斯新兴的审查技术
  • DOI:
  • 发表时间:
    2021
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Diwen Xue;Reethika Ramesh;Valdik S S;Leonid Evdokimov;Andrey Viktorov;Arham Jain;Eric Wustrow;Simonetta Basso;Roya Ensafi
  • 通讯作者:
    Roya Ensafi
Advanced Network Inference Techniques Based on Network Protocol Stack Information Leaks
  • DOI:
  • 发表时间:
    2015-01
  • 期刊:
  • 影响因子:
    4
  • 作者:
    Roya Ensafi
  • 通讯作者:
    Roya Ensafi
Network Responses to Russia's Invasion of Ukraine in 2022: A Cautionary Tale for Internet Freedom
网络对 2022 年俄罗斯入侵乌克兰的反应:互联网自由的警示故事
  • DOI:
  • 发表时间:
    2023
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Reethika Ramesh;R. Raman;A. Virkud;Alexander Dirksen;Armin Huremagic;D. Fifield;D. Rodenburg;Rod Hynes;Doug Madory;Roya Ensafi
  • 通讯作者:
    Roya Ensafi

Roya Ensafi的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Roya Ensafi', 18)}}的其他基金

CAREER: Internet-wide censorship detection, diagnosis, and circumvention beyond nation-state censorship
职业:超越民族国家审查制度的互联网范围内的审查制度检测、诊断和规避
  • 批准号:
    2237552
  • 财政年份:
    2023
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
CRII: SaTC: New Side-Channel Techniques in Support of Global Monitoring for Network Disruptions
CRII:SaTC:支持全球网络中断监控的新侧通道技术
  • 批准号:
    1755841
  • 财政年份:
    2018
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Standard Grant

相似国自然基金

Research on Quantum Field Theory without a Lagrangian Description
  • 批准号:
    24ZR1403900
  • 批准年份:
    2024
  • 资助金额:
    0.0 万元
  • 项目类别:
    省市级项目
Cell Research
  • 批准号:
    31224802
  • 批准年份:
    2012
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research
  • 批准号:
    31024804
  • 批准年份:
    2010
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research (细胞研究)
  • 批准号:
    30824808
  • 批准年份:
    2008
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Research on the Rapid Growth Mechanism of KDP Crystal
  • 批准号:
    10774081
  • 批准年份:
    2007
  • 资助金额:
    45.0 万元
  • 项目类别:
    面上项目

相似海外基金

Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317232
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330940
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338301
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317233
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338302
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330941
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
  • 批准号:
    2413046
  • 财政年份:
    2024
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: EDU: Adversarial Malware Analysis - An Artificial Intelligence Driven Hands-On Curriculum for Next Generation Cyber Security Workforce
协作研究:SaTC:EDU:对抗性恶意软件分析 - 下一代网络安全劳动力的人工智能驱动实践课程
  • 批准号:
    2230609
  • 财政年份:
    2023
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: EDU: RoCCeM: Bringing Robotics, Cybersecurity and Computer Science to the Middled School Classroom
合作研究:SaTC:EDU:RoCCeM:将机器人、网络安全和计算机科学带入中学课堂
  • 批准号:
    2312057
  • 财政年份:
    2023
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: CORE: Medium: Understanding the Impact of Privacy Interventions on the Online Publishing Ecosystem
协作研究:SaTC:核心:媒介:了解隐私干预对在线出版生态系统的影响
  • 批准号:
    2237329
  • 财政年份:
    2023
  • 资助金额:
    $ 73.34万
  • 项目类别:
    Standard Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了