Slashdot Mirror

← Back to Stories (view on slashdot.org)

BitTorrent Devs Introduce Comcast-Proof Encryption

Posted by Zonk on from the crafty-devs dept.

Dean Garfield writes "An article at TorrentFreak notes that several BitTorrent developers have proposed a new protocol extension with the ability to bypass the BitTorrent interfering techniques used by Comcast and other ISPs. 'This new form of encryption will be implemented in BitTorrent clients including uTorrent, so Comcast subscribers are free to share again. The goal of this new type of encryption (or obfuscation) is to prevent ISPs from blocking or disrupting BitTorrent traffic connections that span between the receiver of a tracker response and any peer IP-port appearing in that tracker response, according to the proposal.'"

36 of 334 comments (clear)

  1. Do arms races ever work? by pembo13 · · Score: 5, Insightful

    Unless one side suddenly blows away the other, I don't see this ending. It may breed innovation, but said innovation only seems useful for this one problem.

    --
    "Thanks for all the money you paid to us. We've used it to buy off ISO among other things" -Microsoft
    1. Re:Do arms races ever work? by webmaster404 · · Score: 4, Insightful

      Well, its not an "end-all" solution however it solves the immediate problem. However chances are in 10-15 years we won't even be using Torrents we will have moved on to another form of P2P.

      --
      There is no "disagree" moderation, and troll, flamebait and overrated are not valid substitutes
    2. Re:Do arms races ever work? by Anonymous Coward · · Score: 4, Funny

      Why wait 10-15 years? Jump on the bandwagon and make impossible predictions about the near future.

      In 10-15 years, p2p will stand for Person to Person, as we will have placed the computers inside our heads, we will share thoughts. No more picture based porn, when you "download" the new porn, it will appear as you in it. And you will not only get to see/heard, but also smell, taste, and feel. More importantly, cyber-sex will be much more like real sex, as a virtual world will be just as real as the real world.

      Oh, and in 20 years legislation will have been past severely restricting this new technology to anyone under 21 years of age, and in some states, cyber-anal-sex will be a capital offense. In 23 years, Comcast will start 'degrading' this new service for due to 'QoS' concerns. After a few million people have their virtual parters turn into cows during virtual sex, a riot breaks out leaving America as a second world nation.

    3. Re:Do arms races ever work? by moderatorrater · · Score: 5, Insightful

      Do arms races ever work? Depends on your objective. Generally, arms races preserve the status quo, which, in this instance, is exactly what they're trying to do.
    4. Re:Do arms races ever work? by fyrewulff · · Score: 5, Funny

      Yes. Once they actually do make disc based media that can actually take a fall, we'll be using the FDTP (Flying Disc Transfer Protocol) method.

      However, the packet drop in windy places would be too much.

      --
      "We need to get over this notion, that, for Apple to win... Microsoft must lose." - Steve Jobs, 1997
    5. Re:Do arms races ever work? by rale,+the · · Score: 5, Insightful

      Comcast's bittorrent filtering has almost certainly cost them money in the form of hardware and software to implement it. If continual updates to the protocol make it more difficult and expensive to filter, then theres always the chance that ISPs could decide it's actually a better investment in the long run to upgrade their networks, rather than upgrade their filtering. That could just be wishful thinking, tho...

    6. Re:Do arms races ever work? by CodeBuster · · Score: 4, Interesting

      The bittorent devs have the upper hand, at least for the forseable future, because of strong crypto like AES, Serpent, and Twofish for symmetric session traffic and strong public key crypto like RSA to handle the handshakes and symmetric key exchanges. The only response of the ISP is to try and automate Man in the Middle (MITM), but that will be extremely difficult and expensive to implement in practice. Remember that Comcast was throttling bandwidth to cut costs on network upgrades so why would they spend exponentially more on new specialized crypto hardware and software to MITM the handshakes on bittorent sessions if they are too cheap to even upgrade their network? Unless and until there are substantial advances in cryptanalyis (as far as I know there have been no substantial improvements on known attacks in recent years, minor optimizations here and there but not enough to really put a dent in the crypto) or quantum computers become cheap and practical, encryption will provide a very strong defense against network filtering, particularly when it is combined with port randomization. That is why it is in the best Interests of Comcast and other ISPs NOT to escalate by engaging in packet filtering. They will only hasten the development of bittorent clients with strong crypto, as they are doing here, AND draw attention to these new "super" clients that are not "slow".

    7. Re:Do arms races ever work? by linzeal · · Score: 4, Interesting

      We are still using HTTP and FTP, who is to say that BT will not just slowly mature like those? If there is any standard P2P protocol emerging than BT would be in the top 3 along with Edonkey and DC++.

      --
      An Education is the Font of All Liberty
    8. Re:Do arms races ever work? by MightyMartian · · Score: 5, Interesting

      Or they could just do the sensible thing, cut out all the bullshit "unlimited" advertising (which should be against the law anyways) and start selling customers a set block of gigabytes, with an over-limit charge per gig, just like the dialup ISPs did with time online in the olden days. That's what I did at the small ISP I worked for. I wrote and maintained the billing software, and just sucked in usage stats off our Radius servers once an hour. The system was even set up to send out an email when a user was close to his gigabyte limit letting him know that the meter was going to start running and what the charge per gig was.

      We tried shaping P2P traffic, and it just annoyed customers, and annoying customers is not exactly a long-term strategy for success.

      --
      The world's burning. Moped Jesus spotted on I50. Details at 11.
    9. Re:Do arms races ever work? by azgard · · Score: 4, Insightful

      Depends on your objective. Generally, arms races preserve the status quo, which, in this instance, is exactly what they're trying to do. The question is, what is the status quo? Is it the filtered or the unfiltered internet?
    10. Re:Do arms races ever work? by madsenj37 · · Score: 4, Insightful

      1. Evolution is an arms race. Viruses and bacteria attack us and we adapt, so they adapt, creating a cycle.

      2. Free markets are an arms race. When one business evolves, the other must to survive or perish.

      --
      Choosing the lesser of two evils is a choice for evil.
    11. Re:Do arms races ever work? by Zebra_X · · Score: 5, Insightful

      "Or they could just do the sensible thing, cut out all the bullshit "unlimited" advertising and start selling customers a set block of gigabytes."

      I can assure you, you don't want this. You assume that the ISP's are going to give you a "reasonable" block of data to transfer on a monthly basis and a reasonable price - they are not. They will use this pricing scheme to "extract value" from their customer base in the form of quotas that are properly tiered so as to be just below the common usage tier. The result will be many customers need to go a step higher, and are charged more, for considerably less than they had access to before. Do you really want to worry about whether the next movie you get off of iTunes is going to pop your quota? Or the next stream you setup?

      Honestly, bandwidth in the US is what is causing a great deal of innovation at the moment - look at iTunes and Netflix now offering entire movies as either downloads or streaming. Caps will only stifle the adoption and innvoation of this type of technolgy. Customers will think twice about the double cost of streaming a video - the cost to their cap, and the cost of the service. There are I'm sure other bandwith based applications out there that we have not even thought of.

      The answer is just in disclaiming that running certain types of services like bittorrent coupled with excessive transfer on a connection can lead to service degredation, not termination. They just need to put a process in place to handle this situation. Time warner claims that "5% of their customers use 50% of their bandwidth" - well - that seems pretty damn easy to fix doesn't it? Exceed a certain monthly transfer rate, send out a warning via e-mail - usage continues - put a cap that is far lower than their original amount.

      In addition they don't really say that they are running out of bandwidth, so I'm not sure I see where the problem is.

    12. Re:Do arms races ever work? by Just+Some+Guy · · Score: 4, Insightful

      Remember that Comcast was throttling bandwidth to cut costs on network upgrades so why would they spend exponentially more on new specialized crypto hardware and software to MITM the handshakes on bittorent sessions if they are too cheap to even upgrade their network?

      That's a very important point. Comcast is going to have to spend $X to make their network tolerable, either by buying blocking P2P and other bandwidth-hungry application, or by expanding capacity. The first method gets them a nice, controlled, slow network and the hatred of all their potential customers. The second gives them a wild-and-woolly, fast network their customers love (and therefore more customers). So, again, given $X: do you invest it to lose business or gain business? That's really the choice here.

      Given Comcast, they'll probably use it to put ultrasonic speakers on their modems so that teens don't want to use them, then five years lateer ask Congress for a bailout because they're uncompetitive.

      --
      Dewey, what part of this looks like authorities should be involved?
  2. Traffic Analysis by gaika · · Score: 5, Informative

    Most blocking systems use traffic analysis to block encrypted protocols, even the ones pretending to be something else. There's no way you can confuse p2p sharing with normal browsing if you look at the pattern of data flows.

    1. Re:Traffic Analysis by Azh+Nazg · · Score: 5, Insightful

      That's nice, except that blocking encrypted protocols blocks quite a bit more than BitTorrent. . . Secure banking over SSL, SSH, VPNs, and a whole plethora of other protocols. Unless an ISP is willing to go from Internet Service Provider to Web Browsing Service Provider, it would be foolish to block encrypted protocols.

      --
      Azh nazg durbataluk, azh nazg gimbatul, Azh nazg thrakataluk agh burzum ishi krimpatul! This sig blocked by Slashdot.
    2. Re:Traffic Analysis by ookabooka · · Score: 4, Interesting

      I think the idea here is to stop Comcast from injecting their own RST packets into the stream, effectively killing the connection from both sides. Every time an ISP implements a harsh countermeasure, they force the evolution of the protocol. I see this simple as the next logical step in the constant pull and tug of P2P and ISP's. Still, kudos for these guys doing this stuff. I'm sure Blizzard will like hearing that their updates are hindered on Comcast's networks while P2P data has an easier time.

      --
      If you are about to mod me down, keep in mind that this post was most likely sarcastic.
    3. Re:Traffic Analysis by budgenator · · Score: 4, Insightful

      that's what the cableco's really want, they can easily oversubscribe the system when all you can do is browse the web and Email.

      --
      Apocalypse Cancelled, Sorry, No Ticket Refunds
    4. Re:Traffic Analysis by gaika · · Score: 5, Informative

      Nobody is going to block all encrypted protocols, that's stupid. They identify the application that is using encryption by looking at the shape of the traffic flows. p2p apps open tons of connections, exchange about equal amount of data both ways, and have a distinct negotiation phase.

    5. Re:Traffic Analysis by jonwil · · Score: 4, Insightful

      Banks dont use consumer grade internet connections to talk to each other.

    6. Re:Traffic Analysis by Anonymous Coward · · Score: 5, Informative

      Actually, IPSec will prevent the ISP from being able to reset the flow. If a packet comes in that is not signed/encrypted (depending on the mode) with the credentials of the other end-point, it is discarded as an attack. It's a pain to set up IPSec security associations in many conditions, but IKEv2 has made it somewhat better.

      The fact that you are buying service from the attacker doesn't make them not an attacker. The counter measures developed to fight attackers may have limits, but they are there and are useful in this context.

    7. Re:Traffic Analysis by Not_Wiggins · · Score: 4, Insightful

      I think you may have missed the point of the GP post.
      The point wasn't to block encrypted traffic just because it is encrypted. It would be to do traffic shaping, so that a connection generating dozens or hundreds of simultaneous encrypted connections to different destination IP's might be targeted; it is a traffic pattern would most likely be generated by a P2P program and not by normal internet use by a family.

      --
      Diplomacy is the art of saying, "Nice doggie!" until you can find a rock.
  3. Another volley herd in The Pirate Bay by corsec67 · · Score: 5, Insightful

    Too bad we even have to fight this forgery by Comcast, but a technical option has its advantages, since a legislative option might get watered down by lobbyists and congress.

    Encryption is always a good thing. The more people that use encryption, the less eavesdropping there will be.

    How about, "if you have nothing to hide, hide it anyways"?

    --
    If I have nothing to hide, don't search me
    1. Re:Another volley herd in The Pirate Bay by webmaster404 · · Score: 4, Insightful

      How about, "if you have nothing to hide, hide it anyways"?

      How about, if you have nothing to hide, someone either the government, your boss, Etc. will twist it to either sell your info or make you look like a criminal, so hide it.
      --
      There is no "disagree" moderation, and troll, flamebait and overrated are not valid substitutes
    2. Re:Another volley herd in The Pirate Bay by Sir_Lewk · · Score: 5, Funny

      How about, "Since I have nothing to hide, you shouldn't mind not reading it"

      --
      "linux is just DOS with a UNIX like syntax" -- Galactic Dominator (944134)
  4. doesn't work by nguy · · Score: 4, Insightful

    Comcast will now probably simply impose soft traffic caps and soft caps on the number of connections users can make.

    1. Re:doesn't work by Wildclaw · · Score: 4, Insightful

      Actually they are doing it because they have an outdated badly scaling last mile network and don't want to spend the nescessary capital to improve it.

      There is a reason that it only is cable companies talking about bandwidth caps, and not the dsl companies.

  5. Re:I wonder... by Kadin2048 · · Score: 4, Insightful

    Well currently the state of the art is in favor of encryption, rather than cryptanalysis, so I don't think that the advantage is automatically Comcast's. They could probably do some fairly sophisticated traffic analysis, but at the end of the day, they're not actually going to break the encryption and get at the contents, and they can't block all encrypted traffic because it's too critical for other purposes.

    They can force the BitTorrent devs to produce a new version every few months, but in the long run I think they're on the losing end of the war -- if they want to stay in the data-transportation business, and assuming there aren't any major breakthroughs in cryptanalysis that render modern public-key technologies useless.

    --
    "Ladies and gentlemen, my killbot features Lotus Notes and a machine gun. It is the finest available."
  6. Comcast makes $$$$$ disrupting seeds by colinmcnamara · · Score: 4, Informative

    Comcast is trying to spin their actions as promoting fair use of the their networks. The truth is that ISP's profit from having data dumped INTO their network and have to pay hard cash for data LEAVING their network. By injecting RST's into the peers seeding traffic, they promote an asymmetric data flow that brings more data (and therefore money) into their network, while minimizing the money they have to pay other ISP's for data going out. This proposal provides protection against the throttling of their upstream Bittorrent traffic only if the ISP is not aware of the info_hash of the torrent. Once this data is known it is possible to apply common data tagging and congestion control techniques to squelch this traffic. All the service provider (or application developers like SandVine) has to do is monitor the common torrent sites, and dynamically update this hashes into the network filters. This is sure to deny a majority of the torrent traffic out there (movies, linux distro's, etc). Colin McNamara CCIE #18233

    --
    Colin McNamara - CCIE #18233 "The difficult we do immediately, the impossible just takes a little longer"
  7. Holy crap, a CCIE! by Anonymous Coward · · Score: 5, Funny

    I am just a measly CCNA.

    I am not worthy.

    m(_ _)m

    1. Re:Holy crap, a CCIE! by Anonymous Coward · · Score: 5, Insightful

      I for one find anyone flaunting certification X to be an annoying twat

    2. Re:Holy crap, a CCIE! by caluml · · Score: 4, Funny

      I for one find anyone flaunting certification X to be an annoying twat I agree with that.

      Professor Sir Calum, MP, PhD, MsC, Esq.
      --
      Get your own free personal location tracker
  8. Re:I wonder... by budgenator · · Score: 4, Informative

    there is also a UDP Tracker Protocol for BitTorrent, UDP doesn't even hear the RST packet. Comcast will have to figure out a way to turn off something that doesn't have an off switch.

    --
    Apocalypse Cancelled, Sorry, No Ticket Refunds
  9. Re:I wonder... by Mr2001 · · Score: 4, Informative

    Nope. It's the TCP connection between two peers that Comcast is attacking, not the connection between the peer and the tracker. Using UDP for the latter doesn't solve anything.

    --
    Visual IRC: Fast. Powerful. Free.
  10. Won't work: They clamp on traffic per flow by ZWithaPGGB · · Score: 4, Informative

    They don't care about any protocol analysis. Any sufficiently long-lived, high volume, traffic flow between two IP addresses gets hit. I've had IPSEC VPN connections behave strangely and opened tickets, where the techs have admitted I had "accidentally" been flagged (IE, the IPSEC endpoints weren't on the whitelist, even though I have business class service).

    The only way around this is to open multiple connections to different addresses, transfer small amounts per connection, and then shut it down, opening the next connection to a different endpoint. It requires a total reengineering of P2P, although the BitTorrent mechanism is closest to what would work.

  11. First Blood? by EdIII · · Score: 4, Insightful

    I'm surprised it took this long for the Bittorrent Devs to respond. Encryption is not a complete solution, as I have stated before, but it is a beginning. That is for certain .

    It's going to get a lot more interesting from here on out. In the end, it will only benefit the consumers since they will receive technology that allows them to communicate a little more privately, and perhaps with a little luck, more anonymously too. One could only hope that TOR/Freenet technologies become as ubiquitous in their use as email. Perhaps a hybrid system with elements of Freenet, TOR, and Bittorrent all wrapped up into one would do the trick. I certainly think so.

    I think, actually I know, that Comcast has fired the first shot in a losing battle.

    I also just can't help pointing out the similarities to the Drug War. A million or so people in prison, and yet there are still plenty of users and suppliers. I would almost say it has effectively made no difference in the amount of people using drugs, or selling them. Especially, since the amount of drugs being sold and used in prisons is even higher then on the street.

    So what is the point? If history has taught us anything, it is that governments (corporations even more so) will consistently fail at their attempts to limit/eliminate popular behavior. The elements may change from time to time, but the end result is always the same. The people will find a way to continue their behavior .

    "Greetings, Professor Falken. Strange game. The only winning move is not to play."

  12. Source of the unsolicited traffic by Lonewolf666 · · Score: 4, Interesting

    Reportedly most of it comes from botnets:
    Insecure machines that were taken over by hackers and whose clueless owners did not notice anything. Or even don't care.

    Now if ISPs start selling traffic by the gigabyte (again - it was not uncommon a few years ago), the owner of those spam-slaves would notice it on their internet bills. At that point, I think securing one's machine would become a lot more popular and the botnets would shrink. Overall result:
    less spam and DDOS attacks.

    Considering the inbound hacking attempts, my father still has a 2 GByte/month plan and so far I've heard no complaints about suddenly increasing bills. So it seems to be not that much.

    --
    C - the footgun of programming languages