An Empirical Analysis of the Commercial VPN Ecosystem

Proceedings of the Internet Measurement Conference 2018 Pub Date : 2018-10-31 DOI:10.1145/3278532.3278570

Mohammad Taha Khan, Joe DeBlasio, G. Voelker, A. Snoeren, Chris Kanich, N. Vallina-Rodriguez

{"title":"An Empirical Analysis of the Commercial VPN Ecosystem","authors":"Mohammad Taha Khan, Joe DeBlasio, G. Voelker, A. Snoeren, Chris Kanich, N. Vallina-Rodriguez","doi":"10.1145/3278532.3278570","DOIUrl":null,"url":null,"abstract":"Global Internet users increasingly rely on virtual private network (VPN) services to preserve their privacy, circumvent censorship, and access geo-filtered content. Due to their own lack of technical sophistication and the opaque nature of VPN clients, however, the vast majority of users have limited means to verify a given VPN service's claims along any of these dimensions. We design an active measurement system to test various infrastructural and privacy aspects of VPN services and evaluate 62 commercial providers. Our results suggest that while commercial VPN services seem, on the whole, less likely to intercept or tamper with user traffic than other, previously studied forms of traffic proxying, many VPNs do leak user traffic---perhaps inadvertently---through a variety of means. We also find that a non-trivial fraction of VPN providers transparently proxy traffic, and many misrepresent the physical location of their vantage points: 5--30% of the vantage points, associated with 10% of the providers we study, appear to be hosted on servers located in countries other than those advertised to users.","PeriodicalId":20640,"journal":{"name":"Proceedings of the Internet Measurement Conference 2018","volume":"8 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2018-10-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"69","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the Internet Measurement Conference 2018","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3278532.3278570","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 69

Abstract

Global Internet users increasingly rely on virtual private network (VPN) services to preserve their privacy, circumvent censorship, and access geo-filtered content. Due to their own lack of technical sophistication and the opaque nature of VPN clients, however, the vast majority of users have limited means to verify a given VPN service's claims along any of these dimensions. We design an active measurement system to test various infrastructural and privacy aspects of VPN services and evaluate 62 commercial providers. Our results suggest that while commercial VPN services seem, on the whole, less likely to intercept or tamper with user traffic than other, previously studied forms of traffic proxying, many VPNs do leak user traffic---perhaps inadvertently---through a variety of means. We also find that a non-trivial fraction of VPN providers transparently proxy traffic, and many misrepresent the physical location of their vantage points: 5--30% of the vantage points, associated with 10% of the providers we study, appear to be hosted on servers located in countries other than those advertised to users.

查看原文本刊更多论文

商业VPN生态系统的实证分析

全球互联网用户越来越依赖虚拟专用网(VPN)服务来保护他们的隐私，规避审查，并访问地理过滤的内容。然而，由于他们自己缺乏技术复杂性和VPN客户端的不透明性质，绝大多数用户在这些方面验证给定VPN服务声明的手段有限。我们设计了一个主动测量系统来测试VPN服务的各种基础设施和隐私方面，并评估了62个商业提供商。我们的研究结果表明，虽然商业VPN服务似乎总体上比其他先前研究的流量代理形式更不可能拦截或篡改用户流量，但许多VPN确实通过各种方式泄漏用户流量-可能是无意的。我们还发现，相当一部分VPN提供商透明地代理流量，并且许多人歪曲了其优势点的物理位置:我们研究的5% -30%的优势点与10%的提供商相关，似乎托管在位于国家/地区的服务器上，而不是那些向用户宣传的服务器。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the Internet Measurement Conference 2018

自引率

0.00%

发文量