Jade's Avatar

Jade

@jade.packet.science

they/them PhD Student @cs.umass.edu Privacy-Enhancing Technologies && Internet Censorship Website: https://packet.science/

12 Followers  |  37 Following  |  15 Posts  |  Joined: 25.02.2025  |  1.5825

Latest posts by jade.packet.science on Bluesky

Oversight: Thank you for volunteering, citizen.
YouTube video by Tom Scott Oversight: Thank you for volunteering, citizen.

Tom Scott making good stuff as always (11 years ago)
youtu.be/RIuf1V1FhpY

01.08.2025 12:24 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Getting into big security conferences may be difficult, but I'm grateful to have never seen anything as bad as "who is adam"

26.07.2025 02:01 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

GWU was very welcoming of @pet-symposium.bsky.social attendees. The nearby whole foods, not so much.

19.07.2025 00:43 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

We found some other strange things too, like bizarre teredo-prefixed IPv6 addresses.

You can read the details in our extended abstract here
www.petsymposium.org/foci/2025/fo...

16.07.2025 15:24 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

One of these IPs hosted a simple SSH server, implying some VPS got caught in the list somehow. But the other... is an *adult content website*.

In the process of trying to block human rights websites, the architects of the GFW send kids looking for Youtube videos to adult videos.

16.07.2025 15:23 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

This approach bears suspicious resemblance to proposals by Fang Binxing (github.com/net4people/b...), the so-called "Father of the GFW".

Additionally, we found hosts in the GFW's injector pool that redirect users not just to these suspicious responding IPs, but to IPs *hosting content*

16.07.2025 15:18 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

Of the 1922 IPv4 addresses we collected from the GFW's injectors, these 6 would respond on ports roughly distributed across the port spectrum

This strange phenomenon poses some risks. The GFW, or anyone else, could be using traffic received by these hosts to surveil censored users.

16.07.2025 15:13 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

The inspiration for this work was a weird observation. Instead of just blackholing connections, some of the IPs injected by the GFW's DNS injector would respond with a S+A. (when you gaze into the abyss....)

16.07.2025 15:09 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

Users under China's censorship regime receive injected responses for bogus black-hole IP addresses when they try to do DNS lookups for censored domains. But what if those IPs weren't just bogus, but potentially malicious?

This week we presented our work: "I'll Shake Your Hand" to FOCI about this.

16.07.2025 15:06 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

ICEBlock is incredibly false privacy claims for marketing. They falsely claim it provides complete anonymity when it doesn't. They're ignoring both data kept by Apple and data available to the server but not stored. They're also spreading misinformation about Android:

www.iceblock.app/android

03.07.2025 12:22 β€” πŸ‘ 220    πŸ” 81    πŸ’¬ 5    πŸ“Œ 19
SPHERE

I'm excited to start work for SPHERE (sphere-project.net) on reproducible internet censorship research this summer!

31.05.2025 14:48 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

OTF President Laura Cunningham: The immediate consequence is that if this holds, over 45 million people will lose access to trusted and secure VPNs, leaving them exposed to authoritarian surveillance and persecution.

17.03.2025 19:27 β€” πŸ‘ 10    πŸ” 12    πŸ’¬ 0    πŸ“Œ 1
Preview
Introducing Defense against AI-guided Traffic Analysis (DAITA) | Mullvad VPN Even if you have encrypted your traffic with a VPN (or the Tor Network), advanced traffic analysis is a growing threat against your privacy. Therefore, we now introduce DAITA.

Someone passed this along: Mullvad is debuting a new traffic-analysis prevention service that adds generated cover traffic and uses constant packet sizes. mullvad.net/en/blog/intr...

06.03.2025 13:59 β€” πŸ‘ 55    πŸ” 10    πŸ’¬ 2    πŸ“Œ 0
Post image

Reminds me of this meme I have locked and loaded for something I'm about to assign students

01.03.2025 18:49 β€” πŸ‘ 4    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
Dear Apple: add β€œDisappearing Messages” to iMessage right now This is a cryptography blog and I always feel the need to apologize for any post that isn’t β€œstraight cryptography.” I’m actually getting a little tired of apologizing for i…

So here’s a simple request to Apple. Apple iMessage needs to enable β€œdisappearing messages.” And they need to do it soon. blog.cryptographyengineering.com/2025/03/01/d...

01.03.2025 17:02 β€” πŸ‘ 80    πŸ” 31    πŸ’¬ 4    πŸ“Œ 2

My contribution to this work was ultimately fairly minor, though I'm really happy to see this published. I've been captivated by how China could allow such a critical vulnerability ever since first learning about this project.

26.02.2025 03:07 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China

Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China

gfw.report/publications...

26.02.2025 03:02 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

Protip for anyone teaching a binary exploitation course: Gradescope's Docker container has ASLR enabled, but a cloud-init vm running in qemu-system-x86_64 does not :D

26.02.2025 00:11 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Hello, world!

25.02.2025 23:51 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@jade.packet.science is following 19 prominent accounts