The Experts below are selected from a list of 70335 Experts worldwide ranked by ideXlab platform
Mikel Izal - One of the best experts on this subject based on the ideXlab platform.
-
on the reduction of authoritative dns cache timeouts detection and implications for User Privacy
Journal of Network and Computer Applications, 2021Co-Authors: Tomas Hernandezquintanilla, Eduardo Magana, Daniel Morato, Mikel IzalAbstract:Abstract The domain name system (DNS) is an Internet network service that is used by hosts to resolve IP addresses from symbolic names. This basic service has been attacked and abused many times, as it is one of the oldest and most vulnerable services on the Internet. Some DNS resolvers conduct DNS manipulation, in which authoritative DNS responses are modified. This DNS manipulation is sometimes used for legitimate reasons (e.g., parental control) and other times is used to support malicious activities, such as DNS poisoning or data collection. Between these DNS manipulation activities, some Internet service providers (ISPs) are changing the DNS cache timeout of the DNS responses with which their DNS resolvers responded to obtain additional data about their subscribers. These data can be a detailed web browsing profile of the User. This approach does not require a large investment and can yield huge benefits if the information is used or sold. Therefore, User Privacy is disputed. We conducted a study in which we analyse how ISPs use this DNS manipulation, propose a method for identifying this DNS manipulation by the end-User and determine the amount of information an ISP can collect by using it. We also developed a public web tool, for which the source code is available, that can help Internet Users determine whether their Privacy is being compromised by their ISP via the exploitation of DNS cache timeouts. This service can facilitate the collection of data on how many people are victims of this abuse and which ISPs around the world are utilizing this technique.
Tomas Hernandezquintanilla - One of the best experts on this subject based on the ideXlab platform.
-
on the reduction of authoritative dns cache timeouts detection and implications for User Privacy
Journal of Network and Computer Applications, 2021Co-Authors: Tomas Hernandezquintanilla, Eduardo Magana, Daniel Morato, Mikel IzalAbstract:Abstract The domain name system (DNS) is an Internet network service that is used by hosts to resolve IP addresses from symbolic names. This basic service has been attacked and abused many times, as it is one of the oldest and most vulnerable services on the Internet. Some DNS resolvers conduct DNS manipulation, in which authoritative DNS responses are modified. This DNS manipulation is sometimes used for legitimate reasons (e.g., parental control) and other times is used to support malicious activities, such as DNS poisoning or data collection. Between these DNS manipulation activities, some Internet service providers (ISPs) are changing the DNS cache timeout of the DNS responses with which their DNS resolvers responded to obtain additional data about their subscribers. These data can be a detailed web browsing profile of the User. This approach does not require a large investment and can yield huge benefits if the information is used or sold. Therefore, User Privacy is disputed. We conducted a study in which we analyse how ISPs use this DNS manipulation, propose a method for identifying this DNS manipulation by the end-User and determine the amount of information an ISP can collect by using it. We also developed a public web tool, for which the source code is available, that can help Internet Users determine whether their Privacy is being compromised by their ISP via the exploitation of DNS cache timeouts. This service can facilitate the collection of data on how many people are victims of this abuse and which ISPs around the world are utilizing this technique.
Daniel Morato - One of the best experts on this subject based on the ideXlab platform.
-
on the reduction of authoritative dns cache timeouts detection and implications for User Privacy
Journal of Network and Computer Applications, 2021Co-Authors: Tomas Hernandezquintanilla, Eduardo Magana, Daniel Morato, Mikel IzalAbstract:Abstract The domain name system (DNS) is an Internet network service that is used by hosts to resolve IP addresses from symbolic names. This basic service has been attacked and abused many times, as it is one of the oldest and most vulnerable services on the Internet. Some DNS resolvers conduct DNS manipulation, in which authoritative DNS responses are modified. This DNS manipulation is sometimes used for legitimate reasons (e.g., parental control) and other times is used to support malicious activities, such as DNS poisoning or data collection. Between these DNS manipulation activities, some Internet service providers (ISPs) are changing the DNS cache timeout of the DNS responses with which their DNS resolvers responded to obtain additional data about their subscribers. These data can be a detailed web browsing profile of the User. This approach does not require a large investment and can yield huge benefits if the information is used or sold. Therefore, User Privacy is disputed. We conducted a study in which we analyse how ISPs use this DNS manipulation, propose a method for identifying this DNS manipulation by the end-User and determine the amount of information an ISP can collect by using it. We also developed a public web tool, for which the source code is available, that can help Internet Users determine whether their Privacy is being compromised by their ISP via the exploitation of DNS cache timeouts. This service can facilitate the collection of data on how many people are victims of this abuse and which ISPs around the world are utilizing this technique.
Eduardo Magana - One of the best experts on this subject based on the ideXlab platform.
-
on the reduction of authoritative dns cache timeouts detection and implications for User Privacy
Journal of Network and Computer Applications, 2021Co-Authors: Tomas Hernandezquintanilla, Eduardo Magana, Daniel Morato, Mikel IzalAbstract:Abstract The domain name system (DNS) is an Internet network service that is used by hosts to resolve IP addresses from symbolic names. This basic service has been attacked and abused many times, as it is one of the oldest and most vulnerable services on the Internet. Some DNS resolvers conduct DNS manipulation, in which authoritative DNS responses are modified. This DNS manipulation is sometimes used for legitimate reasons (e.g., parental control) and other times is used to support malicious activities, such as DNS poisoning or data collection. Between these DNS manipulation activities, some Internet service providers (ISPs) are changing the DNS cache timeout of the DNS responses with which their DNS resolvers responded to obtain additional data about their subscribers. These data can be a detailed web browsing profile of the User. This approach does not require a large investment and can yield huge benefits if the information is used or sold. Therefore, User Privacy is disputed. We conducted a study in which we analyse how ISPs use this DNS manipulation, propose a method for identifying this DNS manipulation by the end-User and determine the amount of information an ISP can collect by using it. We also developed a public web tool, for which the source code is available, that can help Internet Users determine whether their Privacy is being compromised by their ISP via the exploitation of DNS cache timeouts. This service can facilitate the collection of data on how many people are victims of this abuse and which ISPs around the world are utilizing this technique.
Norman Sadeh - One of the best experts on this subject based on the ideXlab platform.
-
cache caching location enhanced content to improve User Privacy
International Conference on Mobile Systems Applications and Services, 2011Co-Authors: Shahriyar Amini, Jason Hong, Janne Lindqvist, Jialiu Lin, Eran Toch, Norman SadehAbstract:We present the design, implementation, and evaluation of Cache, a system that offers location Privacy for certain classes of location-based applications. The core idea in Cache is to periodically pre-fetch potentially useful location-enhanced content well in advance. Applications then retrieve content from a local cache on the mobile device when it is needed. This approach allows an end-User to make use of location-enhanced content while only revealing to third-party content providers a large geographic region rather than a precise location. In this paper, we present an analysis that examines tradeoffs in terms of storage, bandwidth, and freshness of data. We then discuss the design and implementation of an Android service embodying these ideas. Finally, we provide two evaluations of Cache. One measures the performance of our approach with respect to Privacy and mobile content availability using real-world mobility traces. The other focuses on our experiences using Cache to enhance User Privacy in three open source Android applications.
