Frontiers of Data and Computing ›› 2021, Vol. 3 ›› Issue (3): 48-58.

doi: 10.11871/jfdc.issn.2096-742X.2021.03.005

• Special Issue: Communication and Security of Network • Previous Articles     Next Articles

A Privacy Protection Method for IP Header Identifiers

ZHAO Ruibin1,*(),ZHANG Daode2(),YANG Shaoliang1(),JIANG Weiyu2()   

  1. 1. China State Information Center, Beijing 100045, China
    2. Huawei Technologies Co., Ltd., Beijing 100095, China
  • Received:2021-04-15 Online:2021-06-20 Published:2021-07-09
  • Contact: ZHAO Ruibin E-mail:zhrbdove@sic.gov.cn;zhangdaode@huawei.com;yangsl@cegn.gov.cn;jiangweiyu1@huawei.com

Abstract:

[Objective] As the unique identifier of network layer, IP address has become the basic information of network tracking and privacy correlation analysis. Different from other personal identifiers, the IP address coupled with identity and location privacy is the necessary information for routing addressing, and has to be exposed in the IP header, so it is difficult to eliminate the risk of IP privacy leakage by using terminal side obfuscation technology. [Methods] In order to protect IP privacy, we propose a technology based on the cooperation between terminal devices and network devices. In this scheme, IP address and other private information can be obfuscated by network devices in real-time. [Results] The proposed method can achieve packet-by-packet IP privacy protection and prevent privacy curious attackers from eavesdropping or collecting IP messages to implement privacy analysis. This technology not only eliminates the barrier of dual semantics of the current IP address coupling identity and location, but also encrypts the identity and location identifiers separately while meeting the requirements of privacy protection, efficient routing addressing, and auditing and tracing. [Conclusions] The technology in this paper can give IP privacy a good protection, so we think it may have high potential practical value.

Key words: IP address, privacy protection, location privacy, identity privacy, encryption