Towards a Tectonic Traffic Shift? Investigating Apple's New Relay Network

07/05/2022
by   Patrick Sattler, et al.
0

Apple recently published its first Beta of the iCloud Private Relay, a privacy protection service with promises resembling the ones of VPNs. The architecture consists of two layers (ingress and egress), operated by disjoint providers. The service is directly integrated into Apple's operating systems and therefore provides a low entry level barrier for a large user base. It seems to be set up for major adoption with its relatively moderate entry-level price. This paper analyzes the iCloud Private Relay from a network perspective and its effect on the Internet and future measurement-based research. We perform EDNS0 Client Subnet DNS queries to collect ingress relay addresses and find 1586 IPv4 addresses. Supplementary RIPE Atlas DNS measurements reveal 1575 IPv6 addresses. Knowledge about these addresses helps to passively detect clients communicating through the relay network. According to our scans, from January through April, ingress addresses grew by 20 through the relay network verifies Apple's claim of rotating egress addresses. Nevertheless, it reveals that ingress and egress relays can be located in the same autonomous system, thus sharing similar routes, potentially allowing traffic correlation.

READ FULL TEXT

page 5

page 9

research
07/08/2023

Internet Localization of Multi-Party Relay Users: Inherent Friction Between Internet Services and User Privacy

Internet privacy is increasingly important on the modern Internet. Users...
research
04/28/2021

Mutualized oblivious DNS (μODNS): Hiding a tree in the wild forest

The traditional Domain Name System (DNS) lacks fundamental features of s...
research
06/30/2022

WAKU-RLN-RELAY: Privacy-Preserving Peer-to-Peer Economic Spam Protection

In this paper, we propose WAKU-RLN-RELAY as a spam-protected gossip-base...
research
09/19/2022

Rusty Clusters? Dusting an IPv6 Research Foundation

The long-running IPv6 Hitlist service is an important foundation for IPv...
research
02/24/2019

EUI-64 Considered Harmful

This position paper considers the privacy and security implications of E...
research
07/13/2023

Target Acquired? Evaluating Target Generation Algorithms for IPv6

Internet measurements are a crucial foundation of IPv6-related research....
research
06/05/2018

Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists

Network measurements are an important tool in understanding the Internet...

Please sign up or login with your details

Forgot password? Click here to reset