Upgrade to Pro — share decks privately, control downloads, hide ads and more …

OONI and Daphn3

OONI and Daphn3

Lightning talk given at PETS12 with asn.

Arturo Filastò

July 27, 2012
Tweet

More Decks by Arturo Filastò

Other Decks in Technology

Transcript

  1. OONI • Open Observatory of Network interference • Provide a

    methodology and framework • Strong focus on Openness
  2. Why OONI? • A lot of tools exist, but are

    either: • Closed source • Closed methodologies • Closed data • OONI is to be: • Free Software • using Open and described methodologies • publishing all the collected data with Open License
  3. What it detects • It’s goals is to detect: •

    Network filtering (“Is my network traffic being tampered with?”) • Content restrictions (“What is being blocked?”) • Filtering technique (“How is it being blocked?”, “What software are they using?”)
  4. b0wser • Attempts to bisect DPI device fingerprints by using

    the firewall as an Oracle • Given a censored packet exchange, we try to understand what the DPI is matching to do blocking Daphn3 look, we’re intellectuals
  5. client server Blocked client server Blocked ☢ mutation TCP packet

    ☢ client server Unblocked ☢ .... client server Blocked ☢ legend:
  6. OONI Architecture        

              
  7. b0wser’s problems • It does not work when: • The

    DPI is doing fuzzy matching • The DPI is matching on multiple fingerprints • When the blocking does not happen instantly (ex. Active probing) Daphn3
  8. Implementation details of OONI • Written in Python • Based

    on twisted • Provides scapy twisted integration • Is currently a prototype. • Expect problems and to need to have to use the source • Please kill bugs • Parts of OONIB implemented, no remote reporting, OONI- probe runs only locally
  9. Come hack with us :) • https://www.torproject.org/ • #tor, #tor-dev,

    #ooni irc.oftc.net • https://ooni.nu/ • https://gitweb.torproject.org/ooni-probe.git