Bounds for the Security of the Vivaldi Network Coordinate System

Girlich, Franz; Rossberg, Michael; Schaefer, Guenter; Boehme, T.; Schreyer, Jens

doi:10.1109/netsys.2013.21

Cited by 5 publications

(3 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Algorithm 1 contains the basic rules for coordinate adaption in the classical Vivaldi approach. However, the algorithm serves for illustration purposes only, as we will rely on a numerically more stable version [8] in the following. Additionally, we deploy a Manhattan space component (the so-called height) for each coordinate, which is already known from Vivaldi and models the latency component a node experiences towards all neighbors, e.g., due to a significant Internet access delay.…”

Section: A Spring-mass Based Embedding In Spherical Coordinatesmentioning

confidence: 99%

On distributed geolocation by employing spring-mass systems

Grey

Rossberg

Backhaus

et al. 2013

Global Information Infrastructure Symposium - GIIS 2013

View full text Add to dashboard Cite

Recently, finding the geographic whereabouts of nodes became a key service for many distributed applications, e.g., online games or localizing delivered content. However, an exact localization may be impossible because of GPS signals being unavailable, receivers too expensive, or energy too scarce. Hence,alternatives emerged that typically rely on central databases, which in turn are often found to be inaccurate, though. Facing that problem, we study a complementary idea: By constructing a delay-weighted spring-mass embedding of nodes and augmenting the system with geographic hints, e.g., those of traditional location databases, we efficiently estimate geographic positions of nodes by multilateration and solely distributed means. We will show that peer positions can be estimated with an accuracy of a few hundred kilometers in the average case. The proposed system is evaluated by simulations that are based on real-world PlanetLab latency data.

show abstract

Section: A Spring-mass Based Embedding In Spherical Coordinatesmentioning

confidence: 99%

On distributed geolocation by employing spring-mass systems

Grey

Rossberg

Backhaus

et al. 2013

Global Information Infrastructure Symposium - GIIS 2013

View full text Add to dashboard Cite

show abstract

“…One essential advantage of NCSs is the ability to locate a node's network position relative to almost all other nodes without overwhelming the network with storms of delay sampling [30]. NCSs are vulnerable to an adversary falsifying its coordinates [31].…”

Section: Introductionmentioning

confidence: 99%

CPV: Delay-Based Location Verification for the Internet

Abdou

Matrawy

Oorschot

2017

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Abstract-The number of location-aware services over the Internet continues growing. Some of these require the client's geographic location for security-sensitive applications. Examples include location-aware authentication, location-aware access policies, fraud prevention, complying with media licensing, and regulating online gambling/voting. An adversary can evade existing geolocation techniques, e.g., by faking GPS coordinates or employing a non-local IP address through proxy and virtual private networks. We devise Client Presence Verification (CPV), a delay-based verification technique designed to verify an assertion about a device's presence inside a prescribed geographic region. CPV does not identify devices by their IP addresses. Rather, the device's location is corroborated in a novel way by leveraging geometric properties of triangles, which prevents an adversary from manipulating measured delays. To achieve high accuracy, CPV mitigates Internet path asymmetry using a novel method to deduce one-way application-layer delays to/from the client's participating device, and mines these delays for evidence supporting/refuting the asserted location. We evaluate CPV through detailed experiments on PlanetLab, exploring various factors that affect its efficacy, including the granularity of the verified location, and the verification time. Results highlight the potential of CPV for practical adoption.

show abstract

“…One essential advantage of NCSs is the ability to locate a node's network position relative to almost all other nodes without overwhelming the network with storms of delay sampling [24]. Unfortunately, NCSs are vulnerable to an adversary falsifying its coordinates [25], [26].…”

Section: Introductionmentioning

confidence: 99%

Location verification on the Internet: Towards enforcing location-aware access policies over Internet clients

Abdou

Matrawy

Oorschot

2014

2014 IEEE Conference on Communications and Network Security

View full text Add to dashboard Cite

Abstract-Over the Internet, location-sensitive content/service providers are those that employ location-aware authentication or location-aware access policies in order to prevent fraud, comply with media streaming licencing, regulate online gambling/voting, etc. An adversary can configure its device to fake geolocation information, such as GPS coordinates, and send this information to the location-sensitive provider. IP-address based geolocation is circumvented when the adversary's device employs a nonlocal IP address, which is easily achievable through third party proxy and Virtual Private Network providers. To address the issue that existing Internet geolocation techniques were not designed with adversaries in mind, we propose Client Presence Verification (CPV), a delay-based verification technique designed to verify an assertion about a device's presence inside a prescribed triangular geographic region. CPV does not identify devices by their IP addresses, thus hiding the IP does not evade it. Rather, the device's location is corroborated in a novel way by leveraging geometric properties of triangles, which prevents an adversary from manipulating the delay-sampling process to forge the location. To achieve high accuracy, CPV mitigates path asymmetry by introducing a new method to deduce oneway application-layer delays to/from the adversary's participating device, and mines these delays for evidence supporting/denying the asserted location. We implemented CPV, and conducted real world extensive experimental evaluation on PlanetLab. Our results to date show false reject and false accept rates of 2% and 1.1% respectively.

show abstract

Bounds for the Security of the Vivaldi Network Coordinate System

Cited by 5 publications

References 15 publications

On distributed geolocation by employing spring-mass systems

On distributed geolocation by employing spring-mass systems

CPV: Delay-Based Location Verification for the Internet

Location verification on the Internet: Towards enforcing location-aware access policies over Internet clients

Contact Info

Product

Resources

About