SCRUB-tcpdump: A multi-level packet anonymizer demonstrating privacy/analysis tradeoffs

To promote sharing of packet traces across security domains we introduce SCRUB-tcpdump, a tool that adds multi-field multi-option anonymization to tcpdump functionality. Experimental results show how SCRUB-tcpdump provides flexibility to balance the often conflicting requirements for privacy protection versus security analysis. Specifically, we demonstrate with empirical experimentation how different SCRUB-tcpdump anonymization options applied to the same data set can result in different levels of privacy protection and security analysis. Based on these results we propose that optimal network data sharing needs to have different levels of anonymization tailored to the participating organizations in order to tradeoff the risks of potential loss or disclosure of sensitive information.

[1]  Charles V. Wright,et al.  Playing Devil's Advocate: Inferring Sensitive Information from Anonymized Network Traces , 2007, NDSS.

[2]  Martin Roesch,et al.  Snort - Lightweight Intrusion Detection for Networks , 1999 .

[3]  André Årnes,et al.  Anonymization of IP Traffic Monitoring Data: Attacks on Two Prefix-Preserving Anonymization Schemes and Some Proposed Remedies , 2005, Privacy Enhancing Technologies.

[4]  Phillip A. Porras Privacy-Enabled Global Threat Monitoring , 2006, IEEE Security & Privacy.

[5]  William Yurcik,et al.  Outsourcing Security Analysis with Anonymized Logs , 2006, 2006 Securecomm and Workshops.

[6]  William Yurcik,et al.  Sharing computer network logs for security and privacy: a motivation for new methodologies of anonymization , 2005, Workshop of the 1st International Conference on Security and Privacy for Emerging Areas in Communication Networks, 2005..

[7]  R. Stapleton-Gray,et al.  Rendering the Elephant: Characterizing Sensitive Networks for an Uncleared Audience , 2006, 2006 IEEE Information Assurance Workshop.

[8]  Jason Lee,et al.  The devil and packet trace anonymization , 2006, CCRV.

[9]  Vern Paxson,et al.  A high-level programming environment for packet trace anonymization and transformation , 2003, SIGCOMM '03.

[10]  Markus Peuhkuri A method to compress and anonymize packet traces , 2001, IMW '01.

[11]  Yifan Li,et al.  SCRUB-PA: A Multi-Level Multi-Dimensional Anonymization Tool for Process Accounting , 2006, ArXiv.