Investigating the VPN Ecosystem through the Lens of Security, Privacy, and Usability
dc.contributor.author | Ramesh, Reethika | |
dc.date.accessioned | 2024-02-13T21:20:07Z | |
dc.date.available | 2024-02-13T21:20:07Z | |
dc.date.issued | 2023 | |
dc.date.submitted | 2023 | |
dc.identifier.uri | https://hdl.handle.net/2027.42/192431 | |
dc.description.abstract | Global events affect the Internet in new ways every day, be it through increased blocking during sensitive events or through user tracking, surveillance, and targeting. Governments, service providers, advertisers, and online threat actors, often enabled by powerful deep packet inspection technology, insulate users from critical information, invade users' privacy, and monitor and tamper with users' traffic. As a result, users are increasingly turning to Virtual Private Networks (VPNs) as a panacea to overcome various security, privacy, and information restrictions, thereby fueling the growth of the commercial VPN ecosystem into a multi-billion dollar industry. Nevertheless, understanding how users discover, use, and interact with VPNs, as well as investigations into the efficacy, security, and privacy provided by such critical tools, remain severely understudied. This dissertation will demonstrate analyses of threats to user privacy by exploring how commoditized deep packet inspection technologies allow network operators to implement Internet restrictions. It will advance the understanding of key stakeholders of the commercial VPN ecosystem: VPN users and providers. By studying them in tandem, it will illuminate their needs, motivations, and incentives, and use that to highlight misalignments and key areas of concern. Next, it will demonstrate an in-depth technical investigation of VPN products by developing a scalable, rigorous system to test them from a security and privacy standpoint. Finally, this dissertation will explore a service provider's perspective on the malicious misuse of VPNs and present a usable, privacy-focused solution that uses minimal connection features to detect and deter such abuse. | |
dc.language.iso | en_US | |
dc.subject | Security and Privacy | |
dc.subject | VPN | |
dc.title | Investigating the VPN Ecosystem through the Lens of Security, Privacy, and Usability | |
dc.type | Thesis | |
dc.description.thesisdegreename | PhD | |
dc.description.thesisdegreediscipline | Computer Science & Engineering | |
dc.description.thesisdegreegrantor | University of Michigan, Horace H. Rackham School of Graduate Studies | |
dc.contributor.committeemember | Ensafi, Roya | |
dc.contributor.committeemember | Bermann, Sol | |
dc.contributor.committeemember | Halderman, J Alex | |
dc.contributor.committeemember | Kasikci, Baris | |
dc.contributor.committeemember | Redmiles, Elissa | |
dc.subject.hlbsecondlevel | Computer Science | |
dc.subject.hlbtoplevel | Engineering | |
dc.contributor.affiliationumcampus | Ann Arbor | |
dc.description.bitstreamurl | http://deepblue.lib.umich.edu/bitstream/2027.42/192431/1/reethika_1.pdf | |
dc.identifier.doi | https://dx.doi.org/10.7302/22340 | |
dc.working.doi | 10.7302/22340 | en |
dc.owningcollname | Dissertations and Theses (Ph.D. and Master's) |
Files in this item
Remediation of Harmful Language
The University of Michigan Library aims to describe library materials in a way that respects the people and communities who create, use, and are represented in our collections. Report harmful or offensive language in catalog records, finding aids, or elsewhere in our collections anonymously through our metadata feedback form. More information at Remediation of Harmful Language.
Accessibility
If you are unable to use this file in its current format, please select the Contact Us link and we can modify it to make it more accessible to you.