Slashdot Mirror

← Back to Stories (view on slashdot.org)

Researchers ID Skype, BitTorrent Users

Posted by Soulskill on from the cross-contamination dept.

itwbennett writes "Researchers have figured out a way to link online Skype users to their activity on peer-to-peer networks like BitTorrent. The team was able to sift out the nodes through which Skype calls are routed and determine the user's real IP address by sniffing the packets. To correlate the identified Skype users with files shared on BitTorrent, the researchers built tools to collect BitTorrent file identifiers, a BitTorrent crawler to collect IP addresses on the network and a verifier to match an online Skype user with an online BitTorrent user (PDF). 'As soon as the BitTorrent crawler detects a matching IP address, it signals the verifier, which immediately calls the corresponding Skype user and, at the same time, initiates a handshake with the BitTorrent client,' they wrote."

23 of 180 comments (clear)

  1. Re:Researchers? by bigredradio · · Score: 2

    I guess it will depend on who they are working for. If it is for the CIA, FBI or RIAA, then they are crime fighters. If they work for Anonymous, Wikileaks, or the Chinese government, then they are criminals.

    --
    Flexible bare-metal recovery for Linux/UNIX
  2. Packet sniffing by Anonymous Coward · · Score: 2, Interesting

    Seeing as how this relies on packet sniffing of an unaware party's network traffic, I'm pretty sure any application of this without a warrant would constitute wiretapping. Correct me if I'm wrong, but that's my understanding of it.

    1. Re:Packet sniffing by Lunix+Nutcase · · Score: 2

      People are actually unaware that they are broadcasting their ip address when on the internet? Really? Especially those using bittorrent that works through broadcasting yourself to the swarm.

    2. Re:Packet sniffing by znerk · · Score: 2

      A packet analyzer (also known as a network analyzer, protocol analyzer or sniffer, or for particular types of networks, an Ethernet sniffer or wireless sniffer) is a computer program or a piece of computer hardware that can intercept and log traffic passing over a digital network or part of a network.

      http://en.wikipedia.org/wiki/Packet_analyzer

      Sniffing doesn't necessarily require opening the packets. Think of it this way: if you want to know who someone is sending mail to, and who they're receiving mail from, then all you need to do is look at the fronts of the envelopes in their mailbox - sender and receiver address information is there for all to see. You don't actually care what's written inside, you just want to know who they're talking to.

      Of course, it's still illegal to tamper with the mail, but if you didn't actually open the mail, then you might just get a slap on the wrist, instead of a few years in the federal penitentiary - assuming it was proven you touched the mail in the first place.

      --
      This work is licensed under a Creative Commons Attribution 3.0 Unported License.
    3. Re:Packet sniffing by Lunix+Nutcase · · Score: 2

      So your complaining that they are doing nothing different than every bittorrent client does?

  3. Skype incoming call... by Andrewkov · · Score: 4, Funny

    Ring ring... incoming Skype call, it's the RIAA.

  4. This years hottest horror movie by Jumperalex · · Score: 2

    ring ring ring
    "Hello." ... ... ...
    "Hello? Is there anyone there?" ... ... ...
    "We know what you downloaded last summer!!!"

    --
    If you can't be good, be good at it!
  5. Re:Researchers? by joebok · · Score: 5, Insightful

    If they were criminals, wouldn't they keep their methods secret in order to blackmail or otherwise monetize it in some way? Research like this is the only way that security gets better.

  6. can't tell if you're serious by Chirs · · Score: 3, Insightful

    If the researchers can do it, the bad guys may already be doing it.

  7. Re:Researchers? by pclminion · · Score: 2

    Are you some kind of dumbshit? You'd rather the government did this to you and you had no idea it was possible? Now we know this form of tracking is possible and we can develop a defense against it.

  8. This is not research. by spicyed · · Score: 5, Insightful

    All it is is data mining packets from skype nodes and comparing them to open torrent peer lists. This is not really surprising or scary to me. There are other 'researchers' who can link alot more data to you then this.

  9. CLEARLY authoritative by Anonymous Coward · · Score: 4, Insightful

    Because NAT and UPNP wouldn't make a random Skype user and a different BitTorrent user appear to be coming from the same IP address..

  10. Re:Researchers? by Stalks · · Score: 4, Informative

    If you use bittorrent, then you should expect no privacy at all as the protocol openly allows others to get the list of users.

  11. Re:Privacy by znerk · · Score: 4, Interesting

    What's illegal about it? What federal or state statute have they violated?

    Wiretapping. Conspiracy to collect information assumed to be private, via technological means.
    Robocalling (the Skype phone, duh). Wardialing (same thing).

    They've violated a boatload of communications regulations... and the fact that they did it as part of a multi-researcher study means it was premeditated, and they conspired to do it. Conspiracy to commit a misdemeanor is a felony.

    The problem here would be that anyone who tries to have them arrested and/or takes them to civil court will be presumed guilty of something, because why else would we care if someone can tie our online activities to our real-world identities?

    --
    This work is licensed under a Creative Commons Attribution 3.0 Unported License.
  12. Re:Privacy by Lunix+Nutcase · · Score: 2

    An ip address you.publicly broadcast is personal information?

  13. Re:dump skype? by icebraining · · Score: 2

    Decentralizing doesn't really help, since it doesn't change the fact that Bittorrent works by advertising the IPs of the nodes and the torrents they're downloading/seeding.

    What you'd need is something like onion routing, where it's hard to know who you're sharing with, even with centralized trackers.

    Luckily, that exists in the form of Bittorrent over I2P.

    --
    Dilbert RSS feed
  14. Re:Warning! by Anonymous Coward · · Score: 2, Funny

    Fortunately I reconfigured my computer so that it doesn't broadcast an IP addr

    [NO CARRIER]

  15. Re:Encryption? by GameboyRMH · · Score: 2

    Yes but you shouldn't run BT over Tor. It will be slow as shit for you and you'll be hogging the network. I encourage Tor node operators to block bittorrent over Tor (in fact I think it's blocked by default in recent releases).

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
  16. Re:dump skype? by GameboyRMH · · Score: 2

    I've looked at BT over I2P. It's completely incompatible with regular Bittorrent. It's a great idea but there just aren't enough users on there to make it a replacement for regular Bittorrent.

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
  17. Re:Privacy by Jackie_Chan_Fan · · Score: 3, Insightful

    It should be considering it is the path to the machine that holds all of your personal information.

    When you get a key duplicated, a key maker can easily sell a copy of that key, and link it to your name. What if your name is Bill Gates? "This key here is for Bill Gate's personal safe, and this one is for his house, perhaps you would like a copy?"

    Just because its available, doesnt mean its not private, or doesnt come with some expectation of privacy. I dont expect the key maker to sell a copy of my key to someone who intends to harm me.

  18. Re:Moral of the story... by HellYeahAutomaton · · Score: 2

    SIP.
    IAX.
    XMPP

  19. Re:From TFA by znerk · · Score: 2

    If I am understanding the method properly, then anything that generates traffic can be used to correlate data, indicating that the BT user is also a user of (insert internet-using software here). Skype happens to be useful as an immediate indication of the identity of the user.

    The question might then become, "What (legitimate) internet software might I be running, to cast doubt on whether I was using BT to acquire digital content illegally?"

    For example, World of Warcraft uses BitTorrent to distribute patches, and can be configured to do so while you are logged in and playing. With the addition of the "Free to Play" aspect, your BitTorrent traffic might fly under the radar. I'm sure there are other pieces of software that can allow you to show good reason why your computer might have been servicing BitTorrent traffic...

    Part of the problem, here, is that BitTorrent is coming under indirect attack by the media industry... most people will assume that "torrenting" is synonymous with "pirating".

    --
    This work is licensed under a Creative Commons Attribution 3.0 Unported License.
  20. Re:Moral of the story... by i_b_don · · Score: 3, Interesting

    I think this is the real issue here. It all has to be coming from problems with skype's security and nothing else. Skype should take this as a huge warning and encrypt their packet information NOW. I don't care what this is used for, people sniffing packets and being able to tell who someone is on a program like skype that is often left on 24/7 is a huge security risk for the person involved! This should NOT be happening and it's all skype's fault.

    You guys are getting to hung up on the bit torrent aspect of this and should realize that it's really a major skype fuck up.

    d

    --
    all language nazi's will burne in heil!