for your Browser uProxy: a Social Proxy Seattle, WA, USA ...Seattle, WA, USA with help from our...
Transcript of for your Browser uProxy: a Social Proxy Seattle, WA, USA ...Seattle, WA, USA with help from our...
uProxy: a Social Proxy for your Browser
Raymond Cheng, Will Scott, Aaron Gallant, Tom Anderson, Arvind Krishnamurthy
University of WashingtonSeattle, WA, USA
with help from our friends at Google Ideas 1/19
Takeaways
● Users need more control over their paths on the Internet
● uProxy is a browser extension that lets users securely tunnel traffic through a friend’s computer
2/19
Opte Project3/19
Takeaways
● Users need more control over their paths on the Internet
● uProxy is a browser extension that lets users securely tunnel traffic through a friend’s computer
4/19
5/19
Universal Encryption has yet to come
Attacks, surveillance
3/15
Firesheep
6/19
Washington Post 7/19
8/19
9/19
Partial Internet Outages are Common
● Measured 2M outages over 2 months○ 79% were partial
● 10% of outages lasted over 10 minutes● Variety of causes:
route convergence delays, pathological routing policies, misconfiguration, prefix hijacking, route injection, router bugs, DDoS
Katz-Bassett, Ethan, et al. "LIFEGUARD: Practical repair of persistent route failures." ACM SIGCOMM Computer Communication Review 42.4 (2012): 395-406.
10/19
Why now?
11/19
Why now?
Social networks
11/19
Why now?
Social networks
Widely Available Platforms
11/19
Why now?
Social networks
Widely Available Platforms
Web Standards
11/19
Centralized proxies
Connection to proxy
Legend
Censors see connection to YouTube
Users in unsafe environment
Unfettered connection
312/19
+ Failures+ Filter+ Surveil+ Manipulate/Misdirect
Centralized proxies
Connection to proxy
Legend
Censors see connection to YouTube
Users in unsafe environment
Unfettered connection
312/19
+ Failures+ Filter+ Surveil+ Manipulate/Misdirect
Proxy ServerProblems w/Proxies:
+ Scale: easy to find & block everyone+ Trust: users need to trust proxy (e.g. password theft), and proxy needs to trust users (e.g. illegal activity)
uProxy: an experiment in distributed proxying
?1. XMPP/Chat/Email/Social connects users; HTML5 WebRTC transports data; encryption and obfuscation, hides data from attackers.
2. Access and security through social network-based trust; also potential to cache/speed up connection.
3. Share your internet connection’s security and access with trusted friends and family.
Users in unsafe environment
…
Users in safer environment413/19
User Experience Design MocksExplanatory intro screens Connect to social networks Home Screen
5.114/19
User ExperienceRequest Access (Alex) Accept Request (Roothu) Connection Active (Alex)
5.215/19
User ExperienceActive Connection Stop access Settings
5.316/19
uProxy Client Device (Alice) uProxy Serving Device (Bob)
Architecture
TCP/IP Service(YouTube, NYT, Guardian, etc)
Web-browser
uProxy UI display status
uProxy Core proxies TCP requests coming in on WebRTC the to external TCP service
Web-browser
uProxy UIDisplays status & sets Browser's proxy to localhost:port
uProxy Core localhost SOCKS proxy @localhost:port
Transport
(6)
(4)
(2)
Social Transport Social
Social networkChat contacts (e.g. XMPP)
(1)
Stun Servers
(5)
917/19
WebRTCDTLS/UDP+Obf
(3)
Luchaup, Daniel, et al. "LibFTE: a toolkit for constructing practical, format-abiding encryption schemes." Proceedings of the 23rd USENIX conference on Security Symposium. USENIX Association, 2014.
Progress2013- Initial support for reliable WebRTC data channels- Prototype demonstrated at Google Ideas Summit
2014- UX redesign- Chrome/Firefox extensions- Staff up team- Security reviews- Open source on GitHub- Obfuscated WebRTC
18/19
Looking Ahead
Publish to the WebStoreuProxy Mobile ClientuProxy for CloudPlugin support- social networks- alternate network transport protocols- proxy service interfaces
19/19
https://www.uproxy.orghttps://github.com/uproxy
uProxy: Share Your Pathway to the Internet