NATIONAL SCIENCE FOUNDATION Award 1528114 to Qian, Zhiyun: TWC: Small: Collaborative Research: Multipath TCP Side Channel Vulnerabilities and Defenses

Zhiyun Qian
Professor
Computer Science & Engineering
zhiyunq@ucr.edu
(951) 827-6438

UCR Grants Archive

TWC: Small: Collaborative Research: Multipath TCP Side Channel Vulnerabilities and Defenses

AWARD NUMBER

007682-002

FUND NUMBER

33183

STATUS

Closed

AWARD TYPE

3-Grant

AWARD EXECUTION DATE

8/12/2015

BEGIN DATE

9/1/2015

END DATE

8/31/2018

AWARD AMOUNT

$167,000

Sponsor Information

SPONSOR AWARD NUMBER

1528114

SPONSOR

NATIONAL SCIENCE FOUNDATION

SPONSOR TYPE

Federal

FUNCTION

Organized Research

PROGRAM NAME

Proposal Information

PROPOSAL NUMBER

15070774

PROPOSAL TYPE

New

ACTIVITY TYPE

Basic Research

PI Information

Qian, Zhiyun

PI TITLE

Other

PI DEPTARTMENT

Computer Science & Engineering

PI COLLEGE/SCHOOL

Bourns College of Engineering

CO PIs

Project Information

ABSTRACT

The objective of this project is to understand and strengthen the security of Multipath TCP (MPTCP) - an IETF standardized suite of TCP extensions that allow one MPTCP connection, consisting of multiple sub-connections between two hosts, to use multiple paths simultaneously. Even though MPTCP has been gaining momentum in being widely deployed, its security is yet to be well understood. The project is expected to raise awareness of MPTCP security and ultimately yield a foundation for MPTCP security. The study will further increase the acceptance of MPTCP as an efficient, trustworthy, and next-generation transport layer protocol, especially considering that the deployment of new protocols can always be hindered by security concerns. The results will lead to development of guidelines and specifications for MPTCP through standards organizations such as IETF.

This project aims to gain an in-depth understanding of the implicit interaction among sub-connections within an MPTCP connection, the information that can be leaked or inferred through side channels by eavesdropping such interaction, and the potential attacks on MPTCP by exploiting such leaked or inferred information. The key insight is that the current MPTCP design inherently allows an attacker eavesdropping on one path to learn information (e.g., throughput) about the sub-connections along other paths. Such seemingly benign information leakage allows an attacker to hijack the entire MPTCP connection. This project considers three general threat models: on-path only attacker, host-assisted off-path attacker, and host-assisted on-path attacker. Based on these threat models, the PIs propose to study traffic offloading/onloading and sequence number inference attacks. The PIs also plan to design and validate countermeasures and defense mechanisms for MPTCP against such threats.

(Abstract from NSF)