How to Catch when Proxies Lie: Verifying the Physical Locations of Network Proxies with Active Geolocation

Proceedings of the Internet Measurement Conference 2018 Pub Date : 2018-10-31 DOI:10.1145/3278532.3278551

Zachary Weinberg, Shinyoung Cho, Nicolas Christin, V. Sekar, Phillipa Gill

{"title":"How to Catch when Proxies Lie: Verifying the Physical Locations of Network Proxies with Active Geolocation","authors":"Zachary Weinberg, Shinyoung Cho, Nicolas Christin, V. Sekar, Phillipa Gill","doi":"10.1145/3278532.3278551","DOIUrl":null,"url":null,"abstract":"Internet users worldwide rely on commercial network proxies both to conceal their true location and identity, and to control their apparent location. Their reasons range from mundane to security-critical. Proxy operators offer no proof that their advertised server locations are accurate. IP-to-location databases tend to agree with the advertised locations, but there have been many reports of serious errors in such databases. In this study we estimate the locations of 2269 proxy servers from ping-time measurements to hosts in known locations, combined with AS and network information. These servers are operated by seven proxy services, and, according to the operators, spread over 222 countries and territories. Our measurements show that one-third of them are definitely not located in the advertised countries, and another third might not be. Instead, they are concentrated in countries where server hosting is cheap and reliable (e.g. Czech Republic, Germany, Netherlands, UK, USA). In the process, we address a number of technical challenges with applying active geolocation to proxy servers, which may not be directly pingable, and may restrict the types of packets that can be sent through them, e.g. forbidding traceroute. We also test three geolocation algorithms from previous literature, plus two variations of our own design, at the scale of the whole world.","PeriodicalId":20640,"journal":{"name":"Proceedings of the Internet Measurement Conference 2018","volume":"171 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2018-10-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"48","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the Internet Measurement Conference 2018","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3278532.3278551","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 48

Abstract

Internet users worldwide rely on commercial network proxies both to conceal their true location and identity, and to control their apparent location. Their reasons range from mundane to security-critical. Proxy operators offer no proof that their advertised server locations are accurate. IP-to-location databases tend to agree with the advertised locations, but there have been many reports of serious errors in such databases. In this study we estimate the locations of 2269 proxy servers from ping-time measurements to hosts in known locations, combined with AS and network information. These servers are operated by seven proxy services, and, according to the operators, spread over 222 countries and territories. Our measurements show that one-third of them are definitely not located in the advertised countries, and another third might not be. Instead, they are concentrated in countries where server hosting is cheap and reliable (e.g. Czech Republic, Germany, Netherlands, UK, USA). In the process, we address a number of technical challenges with applying active geolocation to proxy servers, which may not be directly pingable, and may restrict the types of packets that can be sent through them, e.g. forbidding traceroute. We also test three geolocation algorithms from previous literature, plus two variations of our own design, at the scale of the whole world.

查看原文本刊更多论文

如何捕捉代理谎言:验证具有活动地理位置的网络代理的物理位置

世界各地的互联网用户都依赖商业网络代理来隐藏他们的真实位置和身份，并控制他们的表面位置。他们的理由从普通的到安全的都有。代理运营商没有提供证据证明他们所宣传的服务器位置是准确的。IP-to-location数据库往往与所公布的位置一致，但也有许多关于这类数据库出现严重错误的报告。在本研究中，我们结合AS和网络信息，从ping时间测量到已知位置的主机，估计了2269个代理服务器的位置。这些服务器由7个代理服务运营，据运营商称，分布在222个国家和地区。我们的测量表明，其中三分之一肯定不在广告宣传的国家，另外三分之一可能不在。相反，它们集中在服务器托管便宜且可靠的国家(例如捷克共和国、德国、荷兰、英国、美国)。在这个过程中，我们解决了一些在代理服务器上应用主动地理定位的技术挑战，这些服务器可能无法直接ping通，并且可能限制可以通过它们发送的数据包类型，例如禁止traceroute。我们还在整个世界范围内测试了以前文献中的三种地理定位算法，以及我们自己设计的两种变体。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the Internet Measurement Conference 2018

自引率

0.00%

发文量