Pareto-optimal Defenses for the Web Infrastructure: Theory and Practice-Reference-Cited by-同舟云学术

Pareto-optimal Defenses for the Web Infrastructure: Theory and Practice

Published:2023-03-13 Issue:2 Volume:26 Page:1-36
ISSN:2471-2566
Container-title:ACM Transactions on Privacy and Security
language:en
Short-container-title:ACM Trans. Priv. Secur.

Author:

Di Tizio Giorgio¹^ORCID,Speicher Patrick²^ORCID,Simeonovski Milivoj³^ORCID,Backes Michael²^ORCID,Stock Ben²^ORCID,Künnemann Robert²^ORCID

Affiliation:

1. University of Trento, Trento, Italy

2. CISPA Helmholtz Center for Information Security, Stuhlsatzenhaus, Saarbrücken, Germany

3. Independent researcher

Abstract

The integrity of the content a user is exposed to when browsing the web relies on a plethora of non-web technologies and an infrastructure of interdependent hosts, communication technologies, and trust relations. Incidents like the Chinese Great Cannon or the MyEtherWallet attack make it painfully clear: the security of end users hinges on the security of the surrounding infrastructure: routing, DNS, content delivery, and the PKI. There are many competing, but isolated proposals to increase security, from the network up to the application layer. So far, researchers have focused on analyzing attacks and defenses on specific layers. We still lack an evaluation of how, given the status quo of the web, these proposals can be combined, how effective they are, and at what cost the increase of security comes. In this work, we propose a graph-based analysis based on Stackelberg planning that considers a rich attacker model and a multitude of proposals from IPsec to DNSSEC and SRI. Our threat model considers the security of billions of users against attackers ranging from small hacker groups to nation-state actors. Analyzing the infrastructure of the Top 5k Alexa domains, we discover that the security mechanisms currently deployed are ineffective and that some infrastructure providers have a comparable threat potential to nations. We find a considerable increase of security (up to 13% protected web visits) is possible at a relatively modest cost, due to the effectiveness of mitigations at the application and transport layer, which dominate expensive infrastructure enhancements such as DNSSEC and IPsec.

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3567595

Reference85 articles.

1. K. Afifi-Sabet. 2021. Google is Shifting YouTube Infrastructure to Google Cloud. Retrieved 7 November 2022 from https://www.itpro.co.uk/cloud/cloud-computing/359785/google-is-shifting-youtube-infrastructure-to-google-cloud.

2. Anonymous. 2014. Towards a comprehensive picture of the great firewall’s DNS censorship. In Proceedings of the 4th FOCI.

3. APNIC. 2014. DNSSEC Validation Rate by Country. Retrieved September 1 2021 from https://stats.labs.apnic.net/dnssec.

4. A. Barth and B. Sterne. 2015. Content Security Policy 1.0. Technical Report. W3C. Retrieved from http://www.w3.org/TR/2015/NOTE-CSP1-20150219/.

5. Chromium Blog. 2021. A Safer Default for Navigation: HTTPS. Retrieved 7 November 2022 from https://blog.chromium.org/2021/03/a-safer-default-for-navigation-https.html.