PrivDPI

Ning, Jianting; Poh, Geong Sen; Loh, Jia-Ch'ng; Chia, Jason; Chang, Ee-Chien

doi:10.1145/3319535.3354204

Cited by 38 publications

(6 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…sexual or drug-related. However the technology used tends to be more highly related to the corporate network monitoring methods-we found many papers for which the technical scheme was self-described for use in both settings [54,55,108,150,182,215,216,226,274,336,336].…”

Section: B1 On the Inclusion Of Privacy-preserving Deep Packet Inspec...mentioning

confidence: 99%

“…MPC or Searchable Encryption [8,36,54,55,59,94,107,108,150,153,182,199,215,216,225,226,228,246,273,274,295,309,311,336,382] (total: 25) Trusted Execution Environment [78,104,157,158,213,271,294,295,328,339,356,357,369,380] (total: 14) Other [137,295,310,337,387] (total: 5)…”

Section: Corporate Network Monitoringmentioning

confidence: 99%

“…A typical setting is to detect or block specific keywords, websites, or content in TLS traffic, usually with no special hardware. MPC or Searchable Encryption [54,55,108,150,182,215,216,226,274,295,304,305,336] (total: 13) Trusted Execution Environment [328] (total: 1)…”

Section: Parental or Educational Controlmentioning

confidence: 99%

See 2 more Smart Citations

SoK: Content Moderation for End-to-End Encryption

Scheffler

Mayer

2023

PoPETs

View full text Add to dashboard Cite

Popular messaging applications now enable end-to-end-encryption (E2EE) by default, and E2EE data storage is becoming common. These important advances for security and privacy create new content moderation challenges for online services, because services can no longer directly access plaintext content. While ongoing public policy debates about E2EE and content moderation in the United States and European Union emphasize child sexual abuse material and misinformation in messaging and storage, we identify and synthesize a wealth of scholarship that goes far beyond those topics. We bridge literature that is diverse in both content moderation subject matter, such as malware, spam, hate speech, terrorist content, and enterprise policy compliance, as well as intended deployments, including not only privacy-preserving content moderation for messaging, email, and cloud storage, but also private introspection of encrypted web traffic by middleboxes. In this work, we systematize the study of content moderation in E2EE settings. We set out a process pipeline for content moderation, drawing on a broad interdisciplinary literature that is not specific to E2EE. We examine cryptography and policy design choices at all stages of this pipeline, and we suggest areas of future research to fill gaps in literature and better understand possible paths forward.

show abstract

Section: B1 On the Inclusion Of Privacy-preserving Deep Packet Inspec...mentioning

confidence: 99%

Section: Corporate Network Monitoringmentioning

confidence: 99%

See 1 more Smart Citation

SoK: Content Moderation for End-to-End Encryption

Scheffler

Mayer

2023

PoPETs

View full text Add to dashboard Cite

show abstract

“…The solutions using middlebox searchable encryption (Canard et al, 2017;Ning et al, 2019;Sherry et al, 2015) need an extra monitoring channel that is required for the inspection. Unfortunately, this is hard to be adopted in Internet servers due to the compatibility issue that we mentioned.…”

Section: Compatibilitymentioning

confidence: 99%

“…Another challenge of using Blind Box (Sherry et al, 2015) and PrivDPI (Ning et al, 2019) is validation. Those middlebox solutions require at least one party to be trusted and this trusted party must validate data to guarantee that the data packets transmitted in an encryption channel and a monitoring channel are the same.…”

Section: Validationmentioning

confidence: 99%

Studies on Inspecting Encrypted Data: Trends and Challenges

Kim¹

2023

JOWUA

View full text Add to dashboard Cite

According to Google's transparency report, 99% of the pages loaded on the Chrome browser are over HTTPS. Encrypting the data traffic becomes almost the default requirement for not only secret data transmission but also users' privacy. However, encrypting data traffic makes us face a new threat. Particularly, conventional middlebox systems such as network intrusion detection systems and other network monitoring systems cannot effectively detect malicious activities over encrypted traffic. Due to this, building middlebox systems that can monitor the encrypted traffic become an actively researched topic. Many different middlebox systems that are based on different techniques are introduced, recently. In this paper, we present the trends and challenges of deep packet inspection (DPI) over encrypted data. Particularly, we triage them into non privacy-preserving techniques and privacy-preserving techniques. Then, we explain which inspection techniques they are based on and compared their properties. Moreover, we provide the challenge that those techniques have for future work.

show abstract