Running Refraction Networking for Real

Autor: Michalis Kallitsis, Jack Wampler, Sze Chuen Tan, J. Alex Halderman, Sergey Frolov, Eric Wustrow, Benjamin VanderSloot, Irv Simpson, Nikita Borisov
Jazyk: angličtina
Rok vydání: 2020
Předmět:
Zdroj: Proceedings on Privacy Enhancing Technologies, Vol 2020, Iss 4, Pp 321-335 (2020)
ISSN: 2299-0984
Popis: Refraction networking is a next-generation censorship circumvention approach that locates proxy functionality in the network itself, at participating ISPs or other network operators. Following years of research and development and a brief pilot, we established the world’s first production deployment of a Refraction Networking system. Our deployment uses a highperformance implementation of the TapDance protocol and is enabled as a transport in the popular circumvention app Psiphon. It uses TapDance stations at four physical uplink locations of a mid-sized ISP, Merit Network, with an aggregate bandwidth of 140 Gbps. By the end of 2019, our system was enabled as a transport option in 559,000 installations of Psiphon, and it served upwards of 33,000 unique users per month. This paper reports on our experience building the deployment and operating it for the first year. We describe how we overcame engineering challenges, present detailed performance metrics, and analyze how our system has responded to dynamic censor behavior. Finally, we review lessons learned from operating this unique artifact and discuss prospects for further scaling Refraction Networking to meet the needs of censored users.
Databáze: OpenAIRE