Abacus
Accurate Cellular Accounting System for Multi-10Gbps Networks

Free-riding Attack

NOTICE: This attack is applicable to ISPs that do not account for TCP retransmission. As of November 2013, all Korean cellular ISPs are vulnerable to this attack.

The "free-riding" attack avoids accounting of the cellular traffic by tunneling the actual payload in a fake TCP header that masquerades as retransmission.

Figure 1. Free-riding attack process (uplink case)

ATTACK SETUP

ATTACK DESIGN

Performance of Tunneled Traffic

Figure 3. Comparison of download throughputs with SpeedTest.
Normal=innocent usage, Tunneling="free-riding" attack,
E=encryption, C=compression

TEST SETUP

RESULTS

Demo Video


Source Code

Publications

People

Students: Younghwan Go, Jongil Won, Denis Foo Kune, and EunYoung Jeong
Faculty: KyoungSoo Park and Yongdae Kim