Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Toppling the Great Firewall of China



 By: Lisa Vaas
2007-09-12
Article Rating:starstarstarstarstar / 1


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. Toppling the Great Firewall of China
  2. ' Toppling the Great Wall '

Rate This Article:
Poor Best
Toppling the Great Firewall of China
( Page 1 of 2 )

Forget your typical firewall: China's censors rely on sophisticated and ancient techniques.

The Great Firewall of China is no firewall after all.

The Peoples Republic of China has no firewall perched on its routers to enable censors to block Internet sites.

Rather, the authoritarian regime relies on a far more sophisticated censorship system that uses a keyword blacklist and routers that reach deep into Internet traffic to find forbidden words or phrases.

"Conventional wisdom was its a firewall—all around the border, youd be blocked. We found that sometimes [it takes a few hops within China to get blocked], up to 13 hops. Some paths werent filtered at all," Jed Crandall, an assistant professor of computer science at University of New Mexicos School of Engineering, told eWEEK.

Resource Library:
In fact, the "Great Firewall of China" that researchers believe is used by the government to block users from accessing what it considers objectionable content is in reality a "panopticon"—a type of prison that relies on prisoners not being able to tell whether or not theyre being observed.

The group of researchers, which includes some researchers from the University of California-Davis, have found that what theyre calling the Great Firewall of China doesnt have to block every illicit word out there—only enough so that users conduct self-censorship because they know their online movements are being watched.

Indeed, some 28 percent of Chinese hosts that the researchers sent probes to were reachable along paths that werent filtered at all, thus disproving the idea that GFC keyword filtering occurs on a firewall strictly at the border of Chinas connections to the Internet.

Firewall evasion takes on a more complex character, given that Chinese Internet users are tricked into thinking theyre constantly being blocked. The researchers thus are proposing an architecture to bypass GFC keyword filtering that doesnt even bother with firewall evasion.

Instead, theyre working on a tool, called ConceptDoppler, that opts for a surprising route: Namely, to spammify words on Chinas blacklist. First, they have to discover what those words are, and theyre doing so by modulating packets, finding out how many hops packets are using to reach China, and determining which specific routers are doing the blacklist filtering. Those routers are, in fact, sending resets as a way to block download of illicit content.

The researchers say ConceptDoppler will act as a kind of weather report on changes in Internet censorship in China and elsewhere. The tool uses algorithms to cluster words by meaning and to identify keywords that are likely to be blacklisted in China. The researchers have a list of 122 words thus far, but told eWEEK that the blacklist likely contains thousands.

Beyond a topological map of worldwide censorship, however, the researchers also plan to turn ConceptDoppler into a tool that will "spammify" blacklisted words, using the same techniques spammers use to evade filters by separating word characters or inserting random characters into words.

Click here to read more about how Microsoft bought China.

"Spammers show us the way," said Earl Barr, a graduate student in computer science at UC-Davis whos also an author on a paper from the researchers thats titled "ConceptDoppler: A Weather Tracker for Internet Censorship."

"We could find out what the best spamming program is out there—[say], some evil Hungarian [program], and use that spam tool for good now," Barr said.

In that scenario, modules on Web sites would signal when theyre getting a connection from within China. Site operators who know they have blacklisted words in their content could then run their responses through the spammifying tool and then deliver into China content that escapes keyword filtering.

Many words and phrases on the blacklist are predictable, such as "Tibetan Independence Movement," "Falun Gong," "The right to strike," "Tiananmen Square Hunger Strike Group" or "Voice of America."

Some are surprising, such as "conversion rate," "Mein Kampf" or "International geological scientific federation." In some cases, their literal translation into Chinese characters look like possible spellings of other blacklisted words.

Page 2: Toppling the Great Wall of China.





  Reader Comments: Toppling the Great Firewall of China
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Lisa Vaas
 


xr80VӮc]m![rYST婊PP$$M{%Ο 7I%_ϖ˖0$D"w?I9sur&56%3E]"I͝~x#(`(IFA)ڶ? }~mk4 u;#|6%?w *s=NN5KԚL|g&Ʈl ekdp,cw 2$Ё_MMJD֥E!m$oqX}:[S=2r3ݛXBT Kd/B(?cs8#~N5yЀk`Vmဌl׸ڮUX'[vRQ(0B.Du#wJ;q'"QcO$ա%q˝LJNtf>D>8:kLNZ]BZ3ˆ螥{ɧ55I  1A 94cT4ne8DrHn> шj%1~ؖap\.ܺa?u/}= :ҍ.,<4]Ԓ],s,U+0wS&>dRrpXdq}9e,4a[Mѡl7ZkuE9,}*^+Y,-Teh_oF×RU5MQ `|pd vJr𺮕}U;ާ;yԼ} g _`d}#1*% ZJ$_S::yXOB$=:GF j;|#Բ_/iv$f1=˧H0#ƌ^8r 򳩥s1\]^u2]u;'H>߉ecby1=TrJw#=Z׋%uݻiw>u;}$#t6 +?[8V'_ZU`6O{uHz?-|`kh`cR^ٗ¯H ?{ǃϗ2 ˏGgcRdt,Atp~F x[(-t[;RH2}zyp%#,_ f kķLJFo$3E@;- u kUykA 4+@_x0NDncf4I5 (,eg{ MHkM`3R˼荦ĿIK2_^*-ɿE7h+dԜө$ɛ!"ˆGn9x|!XsI((GNe6\a>PY<5F$!|emxqZ.S+ЍEXn`HaNh1[ <]{ }# 0fԟ7 >D#m| &>q\l8d(n)sɹsP& z5I#ˋƠ` V<2/?뇾fxs݀§P}-f`sDo뷺e#0(sx?k1 -@H@t"BђF 4  g #X"K"'G@@ww$]VI+Raz"ʦBIg}vn +=*%nqR%a 3ʬ$&vφa[LboD7], S m3-ML9okՒVy E=0g(=2齅d,ThWf &ᠺ4Sy%2{B a 32||}IjkiSi  |kV Wpć 9E#rQϚX %<9.ƲB"5wclBamHSyew{{RՔgaM8F2b=i%ӻnR/|KԝQ48%'1`sW|]ӨڞɪY+jfIT*{ەi]jk-RV7Bj|aל `|,,) ҚiYl`cy!Csz QI7k7CSklQ6qbQ5) KۊyT+5mZ/}s4  9P8wSJ$l%UH w=hZz F=#S=`z:LtBJmw>u m sOѭ,p8*4jkT=Ckab7_E3ka{60g@u\XlnrptVה=% Τ/x擫Np ;fkxF3fԱeSPݷ,Ŀ bZk; 1`sMD@knV2 &Gmܱk]>fuE$ciS+r 3M1 'ֈziHU /Zag CؚyEoXuSk6& [!䊻!`Tfpu,Tn;$!U7mTDq" ֚p성 .c*O|{0$u`n̂_HE"}[88 y|@*&Ozq1 b h bAzq3E+.nA$߰VT!RB }?w2_! *,~{t&R{ZUU+òZP+ cUFQHsj x /OQCԁt83hN>+CzMp`>snA.y >{VN0eC>yLLv&K[eXFt!/cԧ8HȺU0uESUG++؞?F]h6B\4<}gS5 p&7+(SӞͥj\Z'JO.xz2飵6oD@.eOu)'Uj l|`Z܎:Zx>-.9(W` >5F0fƏaf4X[ %}vWc7g%h"RkF:FdDtΈ+6Rj*8};N`[%Jy V9y^%fR+a1o-*=<^5AP,4/E3pS<ܪ+_N|ˀeyfMx[38Wrc0:g<}+XQZFY@1&نaVI %dDfaNg¥ ek&;[*<+u052tݿy jm==#ݸY,`YE:&+砩osɜC/ ܒ;!f@Dh> Lksi>~5O}tv'< hrõm7>;" V\tc{qOf?yT*JZ(*+HA:er-×˿yu,/2wPV|o -"ԄpLaV*S7xo~!RH##I EUq8x J*όԽݽ]VWv&&/!(0H_dpCm軶$\auv1g +f[I.37+uƶOzu=|LЫ{;~x:(Cr?Dze~%< ZE^;: Cz/RO54osV; J@F$=ĸ}vl݋6|v9 2CH4|7qwEGJ:7]9$!κ/XzG]9>봮³OM1fpRbAs cn`zi!寎w\qb륨kNZ _k=WE.'7(afu0eUyy~ïUkq $Ã:XAQ5@kNF˳0wZfp="BtX 1ue}E/c)%Q\(HO5xZ(6[;F_ٿ #^ 4~ y*~y:~_dxL GB=8Y,rl%u\~"=Br^'68Ϻ}hp1Ie/pǻ"TS (L-ӤND)fTіxi'y0:ƶ{w8쀒N9{TlOڢ-]nĖ39\)L ir4 AgJȄY.&Y>0?us:S!"'P<|9X",y8͓eryz2*ŇE718S,&}l м#~,q_ns_ ZR~F 4n՘]tE=ܨCġnE|uw5qp`Ǹ 4We#JZ+D@im>%Lp'O. +fĬߍLbr!p' a1Ѐ’C D^GNb2,yfP 7sY% V.i~LAt({P6NИNx07`BdSAW$-&TO;iஶyMh4qvJh׆.][8x=zg[QS?w:'IMlBT _p#'--5IYŻ O2H,IlvI=3{’Jl&Kj%Ҵx,M(?nt[4-Zτܺ6C&KO> j#N_7-57o9]c& (K„hH9ٳrIg&| Ƶ.m}懹0!Ux/EE))& s];$M,'4d)w/55ao2V=]T|<%)UIMˡhtt7o6{:R[I @t p _x2Di^ٯ+' > C |f3. D5$jpĝV/Lv $T v1EQCW @R D|#nbnE25IU$)ɔ_dY~a6mr,$"Y 3TH-\˔NqIiJD>-[֔V!+ -R"1=C#<[3{&Hp(j>-%Jʺth^4HTtcfL(\w<*is19WiXuyZ/ L2#- 9:E_>_9!^@s۪՚6%K@J';y g|by~ <}dr0(J½(jC0H$!]oA"Bl<5 6V$sL2Oڦ*Ԛ! U=i0\ZpYɅ5Z+&y8`c 1$!r/[!M [BOICtWGq)L_΄tw6DE#iV`Ԇ HV*jV\1V6݀lSsBJL`e1|ir}FJ9%L/}gcn|}ї1#b|tbwT0Y4 D Bv YZga@6ګtK"N?6N*媒÷a+ajm:q?:5f|[2`ΖC0ۏUztcŬ;x J5A+EPWHm#ne c-{6[8arҦ3f;6dJjW >3B[s^?qbS~jb +KN||0̊|U%x[hhwQf1q8Twtc0h끎DҟSQ̏XJ01FFVݏG6وb c[T\Qg?t1цPČV\>dFki!EkStD$`DU<11t#PγjNT]OpYiN?nuzx Zӷptԭsk>]~>^t.BghT晾xQ(X| %Eũ6u&\ «XsxgixɎ(bh,.6uItg`JT /!jbTձ2MPl+38=vk؊km8Gj:ٙEv{#uԦF p@Q똹1}P܄qP ";g]t Фo%u[g@g9CN(S~W-VNy{9H6)?I~CG(]~-4OvmC9CL"~S?g9s?9?σ=9<?0}9y}"^)?Ӝ@?rϡ<"g~/.r"gz^N{ z9#_.>.s޿y *~0~0~@ ]c}}Oy0O9k(+Ρkh:kK:ICP%.N pr+QT /ޯ?$|s&ȡXi7{9ZeeB99^}NF&q\WKM0TntEKLL1nv bCa 5KPe^ۛT"GPypXHxEó##htoĶ.p&}:=Wv l+Jy.)ܲ}:QOXE)9K8GX%ӚXn3'6^*2(s#h2{HO8=\zK[F4Qn=opm⦠ϻL^yX-ak0.: 7W=M\ڎvڝGfe2f;w6 K췡\FP`24UJ`Ԋz!O J14cdKb4p!E#У |v̆H\˘H͛YJæHᄝ%vX0~YDP*`) I؞.^.F$ )Z4i3ǤmMK؊Ei*b,B1 tZD.ڑ,U~f.g-ca6ݢ]G'C1<:8e` Ws]dL$pgB-[˫t^@e)D KB3B^X 7Pت1"QSjWY)j"96>Kd>` X)4SǬ;SDaw.f ]C_NщۛxDla\Dm8q\x-Th01?~zq-[-L>_`;rsqis(=>O%/=YyϐR8K9%)^ AG}FV$53௛Bxz^Dl, +_HR۝cZm& ¬sm1v:ZVAgL3Y,> V_$v5B+*π zl#$>;#;31Q.ezZ= v,8^z'ϓޒێƾ( ;FAm{'_ܹeUhJm[:֕d2֭0k#  MPt> [:γAW Cr 3қ!^"=_vs[=/'`v ǯ-GyJ^Qt 7tlmb @J\l >m73Tt] ` GY&u`ZKr8ǩkmxtz w}1uky!.,0:33HTxX?lۉQ#5m\TFML-Qa[~51Ȟ|NuusfOEmY>mЍ Ft'X3' ya1 g'{y{~kl3lvnwx>Y}#s!?²Ljmg^^kteF)fѰ0$L;,luEG%RJACb 0I :%b|Ỳz3xI1%h3l䣈mAb ?åk[),cwRM_ xWd+KWԵ1tlC^"|fnApjPc- q=C S9\W5Ƙe1,X+0W`e 52lv* XJKŬ"&D0H'%o }ɦGnԌaBav L$8= S^೨b//bA,TT/D4;NB}aEtLR<'\B1,L%6ĊN|]r7Nʓ@:iw>Jz{`h ~K'O(QF>}:8XS|;]`gd /=jxxіŠ6EKB];i B"Kwj񾞝T7 rFͳ`bhPj-jU{'1l5 nEgl(3W'J^^۝wE^꧰a9RUd%rR۬W+E4>9vvlǝl| n!%#'nvbes[&2+