Chinese citizens could once again enjoy LOL Cats on YouTube – as well as content critical of the communist government – if a new system developed by researchers at the University of Michigan (U-M) and the University of Waterloo (UW) in Canada were implemented.
The researchers claim the system, called Telex, would thwart Internet censorship and make it virtually impossible for a censoring government to block individual sites by essentially turning the entire web into a proxy server.
While those looking to circumvent site blocks can currently route requests through a proxy server that acts as an intermediary from clients seeking to connect with blocked servers, censors are able to monitor the content of traffic on the whole network so they are able to eventually find and block the proxy too.
“It creates a kind of cat and mouse game,” said J. Alex Halderman, assistant professor of computer science and engineering at U-M who was explaining this to his computer and network security class when he first hit upon the idea of tackling the problem in a different way.
The system he developed with his colleagues would first require users to install Telex software on their computer that Halderman says could be downloaded from an intermittently available website or borrowed from friends. ISPs outside the censoring nation would also need to deploy equipment called Telex stations.
When a user wanted to visit a blacklisted site, they would establish a secure connection to any HTTPS password-protected website that isn’t blocked. This connection acts as a decoy and the Telex software marks it as a Telex request by inserting a secret-coded tag into the page headers. This tag utilizes a cryptographic technique called “public-key steganography.”
“Steganography is hiding the fact that you’re sending a message at all,” Halderman said. “We’re able to hide it in the cryptographic protocol so that you can’t even tell that the message is there.”
The user’s request would then pass through routers at various ISPs, some of which would be Telex stations that would hold a private key that lets them recognize tagged connections from Telex clients. The stations would then divert the connections so that the user could get to any site on the Internet. Because the requests would need to pass through these Telex stations, the system would require large segments of the Internet, in the form of participating ISPs, to be involved.
“It would likely require support from nations that are friendly to the cause of a free and open Internet,” Halderman said. “The problem with any one company doing this, for example, is they become a target. It’s a collective action problem. You want to do it on a wide scale that makes connecting to the Internet almost an all or nothing proposition for the repressive state.”