Framework and mechanisms for inter-domain traffic traces sharing

Collaborative inter-domain network measurement provides a global view of performance for the rapid growth of the Internet. It substantially benefits a number of network security and monitoring problems if a group of involved organizations sharing their traces. However, data leakage could cause privacy breaches, violate legal obligations, or give away business secrets. Hence many individual Internet Service Providers are unwilling to share their traffic traces under existing anonymization mechanisms by a fear of data leakage. This paper proposed a flexible and secure framework used to securely share traffic traces collected from different domains to the joined parties. The framework extends the policy mechanism based on FLAIM, a GPL (General Public License) tool supporting a lot of trace formats with different anonymization algorithms. Meanwhile, three basic sharing trace mechanisms were proposed to keep the consistency and safety of shared datasets by sharing anonymization policy to the joined parties. A simple centralized policy storage model for recovery is introduced as well. Experimental result shows that the framework performs well for large amount of traffic traces processing. Moreover, with the mechanisms proposed providers can share their data in a secure way.