article

Traffic analysis attacks on Skype VoIP calls

Authors:

Huirong FuAuthors Info & Claims

Computer Communications, Volume 34, Issue 10

Pages 1202 - 1212

https://doi.org/10.1016/j.comcom.2010.12.007

Published: 01 July 2011 Publication History

Abstract

Skype is one of the most popular voice-over-IP (VoIP) service providers. One of the main reasons for the popularity of Skype VoIP services is its unique set of features to protect privacy of VoIP calls such as strong encryption, proprietary protocols, unknown codecs, dynamic path selection, and the constant packet rate. In this paper, we propose a class of passive traffic analysis attacks to compromise privacy of Skype VoIP calls. The proposed attacks are based on application-level features extracted from VoIP call traces. The proposed attacks are evaluated by extensive experiments over different types of networks including commercialized anonymity networks and our campus network. The experiment results show that the proposed traffic analysis attacks can greatly compromise the privacy of Skype calls. Possible countermeasure to mitigate the proposed traffic analysis attacks are analyzed in this paper.

References

[1]

S.A. Baset, H.G. Schulzrinne, An analysis of the skype peer-to-peer internet telephony protocol, in: INFOCOM 2006. 25th IEEE International Conference on Computer Communications, Proceedings, 2006, pp. 1-11. Available from: <http://dx.doi.org/10.1109/INFOCOM.2006.312>.

[2]

P2p telephony explained - for geeks only. Available from: <http://www.skype.com/help/guides/p2pexplained/>.

[3]

T. Berson, Skype security evaluation, Tech. Rep. ALR-2005-031, Anagram Laboratories, 2005.

[4]

K.-T. Chen, C.-Y. Huang, P. Huang, C.-L. Lei, Quantifying Skype user satisfaction, (2006) 399-410.

[5]

M. Perényi, S. Molnár, Enhanced Skype traffic identification, in: ValueTools '07: Proceedings of the 2nd International Conference on Performance Evaluation Methodologies and Tools, ICST (Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering), ICST, Brussels, Belgium, Belgium, 2007, pp. 1-9.

[6]

R. Dingledine, N. Mathewson, P. Syverson, Tor: the second-generation onion router, in: Proceedings of the 13th USENIX Security Symposium, San Diego, CA, 2004, pp. 303-320.

Digital Library

[7]

O. Berthold, H. Federrath, S. Köpsell, Web MIXes: a system for anonymous and unobservable Internet access, in: H. Federrath (Ed.), Proceedings of Designing Privacy Enhancing Technologies: Workshop on Design Issues in Anonymity and Unobservability, Springer-Verlag, LNCS 2009, 2000, pp. 115-129.

[8]

Chaum, D.L., mail, Untraceable electronic and addresses, return, and digital pseudonyms. Communications of the ACM. v24 i2. 84-90.

[9]

A. Pfitzmann, B. Pfitzmann, M. Waidner, ISDN-mixes: untraceable communication with very small bandwidth overhead, in: Proceedings of the GI/ITG Conference on Communication in Distributed Systems, 1991, pp. 451-463.

Digital Library

[10]

Rennhard, M. and Plattner, B., Introducing morphmix: peer-to-peer based anonymous internet usage with collusion detection. In: WPES '02: Proceedings of the 2002 ACM Workshop on Privacy in the Electronic Society, ACM Press, New York, NY, USA. pp. 91-102.

[11]

K. Bennett, C. Grothoff, GAP - practical anonymous networking, in: R. Dingledine (Ed.), Proceedings of Privacy Enhancing Technologies Workshop (PET 2003), Springer-Verlag, LNCS 2760, 2003.

[12]

M.J. Freedman, R. Morris, Tarzan: A peer-to-peer anonymizing network layer, in: Proceedings of the 9th ACM Conference on Computer and Communications Security, Washington, DC, 2002, pp. 193-206. Available from: <http://doi.acm.org/10.1145/586110.586137>.

Digital Library

[13]

Goldschlag, D.M., Reed, M.G. and Syverson, P.F., Hiding routing information. Information Hiding. 137-150.

[14]

B.N. Levine, M.K. Reiter, C. Wang, M.K. Wright, Timing attacks in low-latency mix-based systems, in: Proceedings of Financial Cryptography (FC '04), Key West, FL, 2004, pp. 251-265.

[15]

S.J. Murdoch, G. Danezis, Low-cost traffic analysis of Tor, in: Proceedings of the 2005 IEEE Symposium on Security and Privacy, IEEE CS, 2005.

[16]

Y. Zhu, X. Fu, B. Graham, R. Bettati, W. Zhao, Correlation-based traffic analysis attacks on anonymity networks, IEEE Transactions on Parallel and Distributed Systems 99 (PrePrints). Available from: <http://doi.ieeecomputersociety.org/10.1109/TPDS.2009.146>.

[17]

Zhu, Y. and Bettati, R., Compromising anonymous communication systems using blind source separation. ACM Transactions on Information and System Security. v13 i1. 1-31.

Digital Library

[18]

D.X. Song, D. Wagner, X. Tian, Timing analysis of keystrokes and timing attacks on ssh, in: SSYM'01: Proceedings of the 10th Conference on USENIX Security Symposium, USENIX Association, Berkeley, CA, USA, 2001, p. 25.

[19]

Q. Sun, D.R. Simon, Y.-M. Wang, W. Russell, V.N. Padmanabhan, L. Qiu, Statistical identification of encrypted web browsing traffic, in: IEEE Symposium on Security and Privacy, Society Press, 2002.

[20]

T.S. Saponas, J. Lester, C. Hartung, S. Agarwal, T. Kohno, Devices that tell on you: privacy trends in consumer ubiquitous computing, in: SS'07: Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium, USENIX Association, Berkeley, CA, USA, 2007, pp. 1-16.

[21]

C.V. Wright, L. Ballard, S.E. Coull, F. Monrose, G.M. Masson, Spot me if you can: uncovering spoken phrases in encrypted voip conversations, in: SP '08: Proceedings of the 2008 IEEE Symposium on Security and Privacy, IEEE Computer Society, Washington, DC, USA, 2008, pp. 35-49. Available from: <http://dx.doi.org/10.1109/SP.2008.21>.

Digital Library

[22]

C.V. Wright, L. Ballard, F. Monrose, G.M. Masson, Language identification of encrypted voip traffic: Alejandray roberto or alice and bob? in: SS'07: Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium, USENIX Association, Berkeley, CA, USA, 2007, pp. 1-12.

[23]

Speex:a free codec for free speech. Available from: <http://www.speex.org/>, <http://www.speex.org/>.

[24]

X. Wang, S. Chen, S. Jajodia, Network flow watermarking attack on low-latency anonymous communication systems, in: SP '07: Proceedings of the 2007 IEEE Symposium on Security and Privacy, IEEE Computer Society, Washington, DC. Available from: <http://dx.doi.org/10.1109/SP.2007.30>.

Digital Library

[25]

W. Jiang, H. Schulzrinne, Analysis of on-off patterns in voip and their effect on voice traffic aggregation, in: Computer Communications and Networks, 2000, Proceedings. Ninth International Conference on, 2000, pp. 82-87. Available from: <http://dx.doi.org/10.1109/ICCCN.2000.885474>.

[26]

C. Rathinavelu, L. Deng, Hmm-based speech recognition using state-dependent, linear transforms on mel-warped dft features, in: ICASSP '96: Proceedings of the Acoustics, Speech, and Signal Processing, 1996 on Conference Proceedings, 1996 IEEE International Conference, IEEE Computer Society, Washington, DC, USA, 1996, pp. 9-12. Available from: <http://dx.doi.org/10.1109/ICASSP.1996.540277>.

[27]

M.-P. Schambach, Determination of the number of writing variants with an HMM based cursive word recognition system, in: ICDAR '03: Proceedings of the Seventh International Conference on Document Analysis and Recognition, IEEE Computer Society, Washington, DC, USA, 2003, p. 119.

[28]

An HMM-based approach for gesture segmentation and recognition, in: ICPR '00: Proceedings of the International Conference on Pattern Recognition, IEEE Computer Society, Washington, DC, USA, 2000, p. 3683.

[29]

Rabiner, L.R., A tutorial on hidden Markov models and selected applications in speech recognition. In: Waibel, A., Lee, K.-F. (Eds.), Readings in Speech Recognition, Morgan Kaufmann Publishers Inc., San Francisco, CA, USA. pp. 267-296.

[30]

V. Pavlovic, J.M. Rehg, A. Garg, T.S. Huang, Multimodal speaker detection using error feedback dynamic bayesian networks, Computer Vision and Pattern Recognition, IEEE Computer Society Conference, vol. 2, 2000, p. 2034. Available from: <http://doi.ieeecomputersociety.org/10.1109/CVPR.2000.854730>.

[31]

Jelinek, F., Continuous speech recognition by statistical methods. Proceedings of the IEEE. v64 i4. 532-556.

[32]

Bakis, R., Continuous speech recognition via centisecond acoustic states. The Journal of the Acoustical Society of America. v59 iS1. S97

[33]

O. Berthold, A. Pfitzmann, R. Standtke, The disadvantages of free MIX routes and how to overcome them, in: Proceedings of Designing Privacy Enhancing Technologies: Workshop on Design Issues in Anonymity and Unobservability, Berkeley, CA, 2000, pp. 30-45.

[34]

G. Danezis, A. Serjantov, Statistical disclosure or intersection attacks on anonymity systems, in: Proceedings of 6th Information Hiding Workshop (IH 2004), Toronto, Canada, 2004, pp. 293-308.

[35]

O. Berthold, H. Langos, Dummy traffic against long term intersection attacks, in: Proceedings of Privacy Enhancing Technologies Workshop (PET 2002), San Francisco, CA, 2002, pp. 110-128.

[36]

FindnotProxyList. Available from: <http://www.findnot.com>.

[37]

ResearchChannels. Available from: <www.researchchannel.org>.

[38]

Zfone project home page. Available from: <http://zfoneproject.com/>.

[39]

Szigeti, T. and Hattingh, C., End-to-End QoS Network Design: Quality of Service in LANs, WANs, and VPNs (Networking Technology). 2004. Cisco Press.

[40]

Campbell, J.P., Speaker recognition: a tutorial. Proceedings of the IEEE. v85 i9. 1437-1462.

Cited By

Zhang GFischer-Hübner S(2019)A survey on anonymous voice over IP communication: attacks and defensesElectronic Commerce Research10.1007/s10660-019-09369-019:3(655-687)Online publication date: 1-Sep-2019
https://dl.acm.org/doi/10.1007/s10660-019-09369-0
Narang PHota C(2015)Game-theoretic strategies for IDS deployment in peer-to-peer networksInformation Systems Frontiers10.1007/s10796-015-9582-117:5(1017-1028)Online publication date: 1-Oct-2015
https://dl.acm.org/doi/10.1007/s10796-015-9582-1

Recommendations

Hiding Skype VoIP calls from parametric identification
e-Forensics '08: Proceedings of the 1st international conference on Forensic applications and techniques in telecommunications, information, and multimedia and workshop

The proliferation of wideband connections and the use of more innovative technological platforms in both the business and the private market have caused a shift of the phone traffic from traditional circuit switched networks to packet switched IP based ...
ASR System Integration with Asterisk for SIP or IAX Softphone Clients
IACSIT-SC '09: Proceedings of the 2009 International Association of Computer Science and Information Technology - Spring Conference

This paper provides an insight into the integration of Automatic Speech Recognition with VoIP based Asterisk PBX Server. Softphones are used as VoIP clients which uses SIP and IAX as primary communication protocols to connect to Asterisk PBX Server. A ...
Performance comparison of various VoIP codecs in wireless environments
ICUIMC '11: Proceedings of the 5th International Conference on Ubiquitous Information Management and Communication

One of the major challenges facing VoIP deployment is achieving and maintaining acceptable voice quality. The user-perceivable voice quality within a VoIP network has to match that of conventional circuit-based networks. This perceived voice quality is ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image Computer Communications

Computer Communications Volume 34, Issue 10

July, 2011

124 pages

ISSN:0140-3664

Issue’s Table of Contents

Copyright © Elsevier B.V. © 2010.

Publisher

Elsevier Science Publishers B. V.

Netherlands

Publication History

Published: 01 July 2011

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 26 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

Zhang GFischer-Hübner S(2019)A survey on anonymous voice over IP communication: attacks and defensesElectronic Commerce Research10.1007/s10660-019-09369-019:3(655-687)Online publication date: 1-Sep-2019
https://dl.acm.org/doi/10.1007/s10660-019-09369-0
Narang PHota C(2015)Game-theoretic strategies for IDS deployment in peer-to-peer networksInformation Systems Frontiers10.1007/s10796-015-9582-117:5(1017-1028)Online publication date: 1-Oct-2015
https://dl.acm.org/doi/10.1007/s10796-015-9582-1

View Options

View options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Issue’s Table of Contents