Elisa Boschi scite author profile

a c m s i g c o m m ABSTRACTIn recent years, academic literature has analyzed many attacks on network trace anonymization techniques. These attacks usually correlate external information with anonymized data and successfully de-anonymize objects with distinctive signatures. However, analyses of these attacks still underestimate the real risk of publishing anonymized data, as the most powerful attack against anonymization is traffic injection. We demonstrate that performing live traffic injection attacks against anonymization on a backbone network is not difficult, and that potential countermeasures against these attacks, such as traffic aggregation, randomization or field generalization, are not particularly effective. We then discuss tradeoffs of the attacker and defender in the so-called injection attack space. An asymmetry in the attack space significantly increases the chance of a successful de-anonymization through lengthening the injected traffic pattern. This leads us to re-examine the role of network data anonymization. We recommend a unified approach to data sharing, which uses anonymization as a part of a technical, legal, and social approach to data protection in the research and operations communities.

show abstract

An introduction to IP flow information export (IPFIX)

Trammell

Boschi

2011

IEEE Commun. Mag.

View full text Add to dashboard Cite

Specification of the IP Flow Information Export (IPFIX) File Format

Zseby¹,

Wagner²,

Trammell³

et al. 2009

View full text Add to dashboard Cite

This document describes a file format for the storage of flow data based upon the IP Flow Information Export (IPFIX) protocol. It proposes a set of requirements for flat-file, binary flow data file formats, then specifies the IPFIX File format to meet these requirements based upon IPFIX Messages. This IPFIX File format is designed to facilitate interoperability and reusability among a wide variety of flow storage, processing, and analysis tools.

show abstract

Measurement Data Reduction through Variation Rate Metering

Bianchi

Boschi

Teofili

et al. 2010

View full text Add to dashboard Cite

Exporting Type Information for IP Flow Information Export (IPFIX) Information Elements

Zseby¹,

Trammell²,

Boschi³

et al. 2009

View full text Add to dashboard Cite

This document describes an extension to the IP Flow Information Export (IPFIX) protocol, which is used to represent and transmit data from IP flow measurement devices for collection, storage, and analysis, to allow the encoding of IPFIX Information Model properties within an IPFIX Message stream. This enables the export of extended type information for enterprise-specific Information Elements and the storage of such information within IPFIX Files, facilitating interoperability and reusability among a wide variety of applications and tools.

show abstract

Reducing Redundancy in IP Flow Information Export (IPFIX) and Packet Sampling (PSAMP) Reports

Boschi¹

2009

View full text Add to dashboard Cite

IP Flow Information Export (IPFIX) Implementation Guidelines

Boschi¹

2008

View full text Add to dashboard Cite

The IP Flow Information Export (IPFIX) protocol defines how IP Flow information can be exported from routers, measurement probes, or other devices. This document provides guidelines for the implementation and use of the IPFIX protocol. Several sets of guidelines address Template management, transport-specific issues, implementation of Exporting and Collecting Processes, and IPFIX implementation on middleboxes (such as firewalls, network address translators, tunnel endpoints, packet classifiers, etc.). Boschi, et al. Informational [Page 1] RFC 5153 IPFIX Implementation Guidelines April 4.4.1. Alignment of Information Elements within a Data Record .

show abstract

12 3

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Elisa Boschi

Bidirectional Flow Export Using IP Flow Information Export (IPFIX)

The role of network trace anonymization under attack

An introduction to IP flow information export (IPFIX)

Specification of the IP Flow Information Export (IPFIX) File Format

Measurement Data Reduction through Variation Rate Metering

Exporting Type Information for IP Flow Information Export (IPFIX) Information Elements

Reducing Redundancy in IP Flow Information Export (IPFIX) and Packet Sampling (PSAMP) Reports

IP Flow Information Export (IPFIX) Implementation Guidelines

Contact Info

Product

Resources

About