English

Securing Internet Applications from Routing Attacks

Networking and Internet Architecture 2020-08-13 v3 Cryptography and Security
Authors: Yixin Sun , Maria Apostolaki , Henry Birge-Lee , Laurent Vanbever , Jennifer Rexford , Mung Chiang , Prateek Mittal
View on arXiv PDF

Abstract

Attacks on Internet routing are typically viewed through the lens of availability and confidentiality, assuming an adversary that either discards traffic or performs eavesdropping. Yet, a strategic adversary can use routing attacks to compromise the security of critical Internet applications like Tor, certificate authorities, and the bitcoin network. In this paper, we survey such application-specific routing attacks and argue that both application-layer and network-layer defenses are essential and urgently needed. While application-layer defenses are easier to deploy in the short term, we hope that our work serves to provide much needed momentum for the deployment of network-layer defenses.

Keywords

computer security web browsing ddos attack detection

Cite

@article{arxiv.2004.09063,
  title  = {Securing Internet Applications from Routing Attacks},
  author = {Yixin Sun and Maria Apostolaki and Henry Birge-Lee and Laurent Vanbever and Jennifer Rexford and Mung Chiang and Prateek Mittal},
  journal= {arXiv preprint arXiv:2004.09063},
  year   = {2020}
}

Related papers

View all related →
Networking and Internet Architecture · Computer Science
RAPTOR: Routing Attacks on Privacy in Tor
Yixin Sun, Anne Edmundson, Laurent Vanbever, Oscar Li +3
2015-03-16
Cryptography and Security · Computer Science
Defending Tor from Network Adversaries: A Case Study of Network Path Prediction
Joshua Juen, Aaron Johnson, Anupam Das, Nikita Borisov +1
2015-03-05
Cryptography and Security · Computer Science
Counter-RAPTOR: Safeguarding Tor Against Active Routing Attacks
Yixin Sun, Anne Edmundson, Nick Feamster, Mung Chiang +1
2017-04-07
Cryptography and Security · Computer Science
A Comprehensive Survey of Website Fingerprinting Attacks and Defenses in Tor: Advances and Open Challenges
Yuwen Cui, Guangjing Wang, Khanh Vu, Kai Wei +6
2026-01-06
Networking and Internet Architecture · Computer Science
Compromising Tor Anonymity Exploiting P2P Information Leakage
Pere Manils, Chaabane Abdelberri, Stevens Le Blond, Mohamed Ali Kaafar +3
2010-04-12
Cryptography and Security · Computer Science
Toward Active and Passive Confidentiality Attacks On Cryptocurrency Off-Chain Networks
Utz Nisslmueller, Klaus-Tycho Foerster, Stefan Schmid, Christian Decker
2020-03-03
Cryptography and Security · Computer Science
A Comprehensive Analysis of Routing Vulnerabilities and Defense Strategies in IoT Networks
Kim Jae-Dong
2024-10-18
Cryptography and Security · Computer Science
Virtual local area network over HTTP for launching an insider attack
Yuksel Arslan
2025-07-28
Cryptography and Security · Computer Science
A Holistic Approach to Securing Web Applications
Srdjan Stankovic, Dejan Simic
2010-03-25
Cryptography and Security · Computer Science
DDoS Attack and Defense: Review of Some Traditional and Current Techniques
Muhammad Aamir, Mustafa Ali Zaidi
2014-03-24
Cryptography and Security · Computer Science
A Survey on Cross-Site Scripting Attacks
Joaquin Garcia-Alfaro, Guillermo Navarro-Arribas
2009-06-01
Cryptography and Security · Computer Science
Encoding a Taxonomy of Web Attacks with Different-Length Vectors
Gonzalo Alvarez, Slobodan Petrovic
2007-05-23
Cryptography and Security · Computer Science
Guardians of Anonymity: Exploring Tactics to Combat Cyber Threats in Onion Routing Environments
Karwan Mustafa Kareem
2024-06-13
Networking and Internet Architecture · Computer Science
Active Internet Traffic Filtering: Real-time Response to Denial of Service Attacks
Katerina J. Argyraki, David R. Cheriton
2012-10-26
Cryptography and Security · Computer Science
Securing Tor Tunnels under the Selective-DoS Attack
Anupam Das, Nikita Borisov
2015-03-19
Networking and Internet Architecture · Computer Science
Hijacking Bitcoin: Routing Attacks on Cryptocurrencies
Maria Apostolaki, Aviv Zohar, Laurent Vanbever
2017-03-28
Cryptography and Security · Computer Science
A Study on Web Application Vulnerabilities to find an optimal Security Architecture
C. Amuthadevi, Sparsh Srivastava, Raghav Khatoria, Varun Sangwan
2024-09-02
Cryptography and Security · Computer Science
Efficient and Low Overhead Website Fingerprinting Attacks and Defenses based on TCP/IP Traffic
Guodong Huang, Chuan Ma, Ming Ding, Yuwen Qian +3
2023-02-28
Cryptography and Security · Computer Science
Quantifying Information Exposure in Internet Routing
Peter Mell, Assane Gueye, Christopher Schanzle
2019-06-27
Cryptography and Security · Computer Science
Binary Protector: Intrusion Detection in Multitier Web Applications
C. Venkatesh, D. Nagaraju, T. Sunil Kumar Reddy
2014-05-02
Cryptography and Security · Computer Science
A Survey of Privacy Infrastructures and Their Vulnerabilities
Tian Yunfan, Zhang Xiang
2018-12-18
Cryptography and Security · Computer Science
Survey Paper on Rising Threats of Subverting Privacy Infrastructure
Nethra Balasubramanian
2016-12-20
Cryptography and Security · Computer Science
Encrypted DNS --> Privacy? A Traffic Analysis Perspective
Sandra Siby, Marc Juarez, Claudia Diaz, Narseo Vallina-Rodriguez +1
2019-10-08
Cryptography and Security · Computer Science
DeTorrent: An Adversarial Padding-only Traffic Analysis Defense
James K Holland, Jason Carpenter, Se Eun Oh, Nicholas Hopper
2023-09-26
Cryptography and Security · Computer Science
Effectiveness and detection of denial of service attacks in Tor
Norman Danner, Sam DeFabbia-Kane, Danny Krizanc, Marc Liberatore
2013-10-04