Skip to main content
SpringerLink
Log in

Network Analysis of Dark Web Traffic Through the Geo-Location of South African IP Address Space

  • Chapter
  • First Online:
Smart Cities Performability, Cognition, & Security

Part of the book series: EAI/Springer Innovations in Communication and Computing ((EAISICC))

Abstract

The recent public disclosure of mass surveillance of electronic communication, involving powerful government authorities, has drawn the public’s attention to issues regarding Internet privacy. For almost a decade now, there have been several research efforts towards designing and deploying open-source, trustworthy, and reliable systems that ensure users’ anonymity and privacy. These systems operate by hiding the true network identity of communicating parties against eavesdropping adversaries. TOR, acronym for The Onion Router, is an example of such a system. Such systems relay the traffic of their users through an overlay of nodes that are called Onion Routers and are operated by volunteers distributed across the globe. Such systems have served well as anti-censorship and anti-surveillance tools. The implementation of TOR allows an individual to access the Dark Web, an area of the Internet said to be of a much larger magnitude than the Surface Web. The Dark Web has earned a connotation as a sort of immense black market, associated with terrorist groups, child pornography, human trafficking, sale of drugs, and conspiracies, and hacking Dark Web research has received significant national and international press coverage. However, to date, little or no research has been conducted on the illicit usage TOR usage by South Africans. To date, there has yet to be a study that characterizes the usage of a real deployed anonymity service. Observations and analysis obtained are presented by participating in the TOR network. The primary goal is to elicit TOR usage by South Africans. In particular, interest is focused in answering the following question:

  1. 1.

    How is TOR being used?

In sampling the results, it reflects that the main usage of TOR in a South African Context is to access social media websites.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 79.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 99.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 129.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Caverlee D. (2015). The deep web and dark the darknet. IEEE Transactions on Services Computing, 2(4), 5–8.

    Google Scholar 

  2. TOR. (2016). TOR metrics portal. Retrieved from TOR Project: http://www.torproject.org/

  3. Adler, M. W. (2012). An analysis of the degradation of anonymous protocols. In Network and Distributed Security Symposium.

    Google Scholar 

  4. Bauer, K. (2007). Low resource routing attacks against TOR. In ACM Workshop (pp. 11–20).

    Google Scholar 

  5. Burch, B. (2013). Tracing anonymous packets to their approximate source. In USENIX Conference on System Administration (pp. 319–328). LISA.

    Google Scholar 

  6. Murdoch, S. (2012). Hot or not: Revealing hidden services by their clock skew. In ACM Conference (pp. 27–36).

    Google Scholar 

  7. Edman, E. (2012). AS-awareness in TOR path selection. Journal of Information Management, 2(1), 380–389.

    Google Scholar 

  8. Feamster, N. (2012). Location diversity in anonymity networks (pp. 66–76). New York: ACM.

    Google Scholar 

  9. Johnson, A. (2013). Users get routed: Traffic correlation on TOR by realistic adversaries. Journal of Information Management, 8(1), 121–131.

    Google Scholar 

  10. Murdoch, M. (2015). Low-cost traffic analysis of TOR. s.l (pp. 183–195). New York: ACM.

    Google Scholar 

  11. Shimaikov, V. (2011). Timing analysis in low latency mix networks: Attacks and defences (pp. 121–134). Piscataway, NJ: IEEE.

    Google Scholar 

  12. Wright, M. (2012). An analysis of the degradation of anonymous protocols (pp. 116–122). MIS.

    Google Scholar 

  13. Pappas, V. (2010). Compromising anonymity using packet spinning. Journal of Information Management, 2(3), 161–174.

    Google Scholar 

  14. Ovelier, L. (2006). Locating hidden servers (pp. 161–174). New York: ACM.

    Google Scholar 

  15. Evans, N. (2011). A practical congestion attack on TOR using long paths. Journal of MIS, 6(6), 33–50.

    Google Scholar 

  16. Dingeldine, R. (2010). TOR: The second-generation onion router. Journal of Management Information Systems, 18(8), 303–319.

    Google Scholar 

  17. Reiter, M. (2012). Crowds: Anonymity for web transactions (pp. 66–92). New York: ACM.

    Google Scholar 

  18. McCoy, D. (2008). Shining light in dark places. Understanding the TOR network. In 8th International symposium on Privacy Enhancing Technologies (pp. 63–76).

    Chapter  Google Scholar 

  19. Isdals, T. (2010). Privacy-preserving P2P data sharing with Oneswarm. Springer Journal of Information Security and Privacy, 5(7), 111–122.

    Google Scholar 

  20. Ablon, L. (2014). Markets for cybercrime tools and stolen data. Santa Monica, CA: Rand Corporation.

    Google Scholar 

  21. Bartlett, J. (2015). The dark web: Inside the digital underworld. London: William Heinemann Ltd.

    Google Scholar 

  22. Clark, A. (2013). TOR. The anonymous internet, and if it’s right for you. Accessed in Gizmodo (Vol. 1_2, pp. 112–113).

    Google Scholar 

  23. Cui, L. X., Qu, Y., Gao, L., & Yang, Y. (2018). Security and privacy in smart cities: Challenges and opportunities. IEEE Access, 6, 46134–46145.

    Article  Google Scholar 

  24. Pelton, J. N., & Singh, I. B. (2019). Coping with the dark web, cyber-criminals and techno-terrorists in a smart city. In Smart cities of today and tomorrow. Cham: Copernicus. ISBN 978-3-319-95821-7.

    Google Scholar 

  25. Hevner, A. (2004). Design research in information systems research. Journal of Management Information Systems, 3(6), 75–105.

    Google Scholar 

  26. Saleh, S. (2017). Shedding light on the dark corners of the internet: A survey of TOR research (pp. 1–35). Piscataway, NJ: IEEE.

    Google Scholar 

  27. Blond, L. (2012). One bad apple spoils the bunch: Exploiting P2P applications to trace and profile TOR users. ARXIV (pp. 15–18).

    Google Scholar 

  28. Dingeldine, R. (2013). TOR. The second generation onion router. In NISEX security (pp. 33–52).

    Google Scholar 

  29. Nunamaker, J. (1991). Systems development in information systems research. Journal of Management Information Systems, 5(1), 89–106.

    Google Scholar 

  30. TOR Project. (2018). Ethical TOR research: Guidelines. https://blog.torproject.org/blog/ethical-tor-research-guidelines

  31. Statistics South Africa. (2017). The many faces of cybercrime. Trend Micro Security News, 3(3), 65–76.

    Google Scholar 

  32. Flores, R. (2016). Sextortion in the far east. Trend Micro Security News, 1(1), 4–8.

    Google Scholar 

  33. Django, T. (2018, 30 August). TOR. The anonymous internet, and if it’s right for you (pp. 112–113). New York: Gizmodo.

    Google Scholar 

  34. Dingeldine, R. (2015). The second-generation onion router. Springer Journal of Information Security and Privacy, 4(1), 4–8.

    Google Scholar 

  35. Chertoff, M. (2015). The impact of the dark web on internet governance and cyber security. Global Commission on Internet Governance (Vol. 1_2, pp. 101–105).

    Google Scholar 

  36. Vitaris, B. (2016). Russian is collecting encryption keys as Ă„nti-Terrorism legislation goes into effect. [Online] Available at: Retrieved May 21, 2018, from https://www.deepdotweb.com/2016/08/03/russian-collecting-encryption-keys-anti-terrorism-legislation-goes-effect/

  37. Jaishankar, K. (2007). Establishing a theory of cyber crime. International Journal of Cyber Criminology, 1, 7–9.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. University of Zululand, Teaching and Learning Centre, Durban, Kwa Zulul Natal, South Africa

    Craig Gokhale

Authors
  1. Craig Gokhale
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Craig Gokhale .

Editor information

Editors and Affiliations

  1. Department of Computer Engineering, Antalya Bilim University, Antalya, Turkey

    Fadi Al-Turjman

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this chapter

Check for updates. Verify currency and authenticity via CrossMark

Cite this chapter

Gokhale, C. (2020). Network Analysis of Dark Web Traffic Through the Geo-Location of South African IP Address Space. In: Al-Turjman, F. (eds) Smart Cities Performability, Cognition, & Security. EAI/Springer Innovations in Communication and Computing. Springer, Cham. https://doi.org/10.1007/978-3-030-14718-1_10

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-14718-1_10

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-14717-4

  • Online ISBN: 978-3-030-14718-1

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation