Packet Trace Anonymization With PktAnon


If you’re a network researcher or systems administrator, you know that network traces are often necessary, but not easy to share with colleagues and other researchers. To help with both ease of use and handling of sensitive information, the Institute of Telematics has developed PktAnon, a framework that anonymizes network traffic.

It works by using a profile-based scheme that supports various anonymization primitives, making it easy to switch between different network protocols and anonymization methods. New primitives can easily be added, and several pre-defined profiles are bundled into the distro. The profiles are all XML-based.

Essentially, there are two major uses for network traces: anonymizing user traffic in order to research it, and anonymizing in-house usage, thus preventing the leakage of sensitive information. It’s a rather rigid scheme, but using profiles for this was a stroke of genius that made it a lot easier, more flexible, and as a result, more useful and powerful.

[via TaoSecurity]
[photo: mlpoulter]

5 thoughts on “Packet Trace Anonymization With PktAnon

  1. I lol’d at the picture, and the again @ 1

    It is interesting. I guess if you were paranoid enough, you’d use peer guardian, tor and multiple proxies with this, just in case.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.