The Scale of Geoblocking by Nation

Interesting analysis:

We introduce and explore a little-known threat to digital equality and freedomwebsites geoblocking users in response to political risks from sanctions. U.S. policy prioritizes internet freedom and access to information in repressive regimes. Clarifying distinctions between free and paid websites, allowing trunk cables to repressive states, enforcing transparency in geoblocking, and removing ambiguity about sanctions compliance are concrete steps the U.S. can take to ensure it does not undermine its own aims.

The paper: “Digital Discrimination of Users in Sanctioned States: The Case of the Cuba Embargo”:

Abstract: We present one of the first in-depth and systematic end-user centered investigations into the effects of sanctions on geoblocking, specifically in the case of Cuba. We conduct network measurements on the Tranco Top 10K domains and complement our findings with a small-scale user study with a questionnaire. We identify 546 domains subject to geoblocking across all layers of the network stack, ranging from DNS failures to HTTP(S) response pages with a variety of status codes. Through this work, we discover a lack of user-facing transparency; we find 88% of geoblocked domains do not serve informative notice of why they are blocked. Further, we highlight a lack of measurement-level transparency, even among HTTP(S) blockpage responses. Notably, we identify 32 instances of blockpage responses served with 200 OK status codes, despite not returning the requested content. Finally, we note the inefficacy of current improvement strategies and make recommendations to both service providers and policymakers to reduce Internet fragmentation.

Tags: academic papers, Cuba, national security policy, privacy, surveillance

Posted on November 22, 2024 at 7:06 AM • 14 Comments

Comments

jnorthon • November 22, 2024 12:36 PM

U.S. policy prioritizes internet freedom and access to information in repressive regimes.

It’s not hard to see that this is kind of bs, though. Load up Tor Browser and try to view the I.R.S. or F.C.C. web sites, for example: “Access Denied
You don’t have permission to access “http://www.irs.gov/” on this server.”

Luckily, I’m not a U.S. citizen (who’d be required to file U.S. taxes) living in a “repressive regime”. But I’d be curious to see someone file Freedom of Information Act requests for details on why they feel it appropriate to block anonymous viewing of their sites. Heaven forfend someone download a 1040-NR without being tracked by the U.S.A.

Rontea • November 22, 2024 1:41 PM

Sanctions can significantly affect Internet users, predominantly by restricting access to certain digital services and platforms. These measures can limit individuals’ ability to communicate and share information freely, impacting social and professional networks. Internet services such as payment processors and cloud hosting can be affected, disrupting online businesses and freelance work reliant on these services. Moreover, sanctions can create internet fragmentation, with regional services replacing globally popular ones, potentially limiting the availability and quality of information due to language barriers or the lack of certain features. Additionally, the imposition of sanctions can lead to increased censorship and surveillance as governments may attempt to control and monitor online activity as part of their national security plans.

ResearcherZero • November 22, 2024 10:56 PM

It often doesn’t work as they may be next door.

‘https://www.volexity.com/blog/2024/11/22/the-nearest-neighbor-attack-how-a-russian-apt-weaponized-nearby-wi-fi-networks-for-covert-access/

GooseEgg
https://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-compromise-tool-for-exploiting-cve-2022-38028-to-obtain-credentials/

ResearcherZero • November 23, 2024 6:30 AM

@jnorthon

It is designed to work that way. Try connecting from a location within the US using a different browser and a VPN.

There are different types of blocking for different purposes. Sometimes censorship, but often for a range of other reasons.

By limiting users on Tor, Geo-blocking reduces attacks that could disrupt services during high usage periods, and other malicious activity. There are also benefits for network management too.

However, if you are not a US citizen, then you do not need to use the service. Most users will be located within the US.

–

What is accountability?

If we don’t understand it, then we cannot have it, or it’s sub-virtue – justice.

‘https://euauditors.medium.com/basically-without-accountability-no-democratic-control-203f471137b9

“If you do not speak up for your decision, you should hold your peace and let others run your life.”
https://medium.com/@danielcfng/abdication-of-responsibility-and-authority-causes-and-consequences-92b0474e5756

Bob • November 23, 2024 1:23 PM

Any worthwhile infosec/cybersecurity community popping up on Bluesky yet? I miss being able to pull IOCs from Twitter.

Paul Sagi • November 26, 2024 9:07 AM

AFAIK geoblocking is often due to agreements of where certain ads will be shown, also copyright agreements?
I think geoblocking would be easily defeated by a VPN, so I don’t understand why geoblocking exists.

ResearcherZero • November 27, 2024 1:00 AM

The public was given one day to comment.

‘https://www.crikey.com.au/2024/11/25/teen-social-media-ban-inquiry-submissions/

Digital ID cards for proof of age verification.
https://www.psychologytoday.com/intl/blog/digital-world-real-world/202411/will-banning-social-media-make-youngsters-safe-and-healthy

Jesse Thompson • November 27, 2024 4:01 AM

@ResearcherZero

However, if you are not a US citizen, then you do not need to use the service. Most users will be located within the US.

Hundreds of thousands of US citizens live abroad. Thousands more need to access these services while on vacation.

Geoblocking is a braindead solution to a non-existent problem, here. It just means that whoever wants to attack those sites have to do so from the portions of their botnets that are on US soil, which is still going to represent a pretty large portion of their botnet.

But more to the point it helps illustrate how delusional the original claim of “U.S. policy prioritizes internet freedom and access to information in repressive regimes” is. I’ve yet to see US policy defend a single whistleblower, least of all Snowden.

Actual US policy is nothing deeper than “pander to business interests”, and US-run businesses often benefit more from free flow of information than they would from arbitrary geo-fencing due to having their fingers in global markets.

If that happens to temporarily and shallowly align with the best interests of end users, then just don’t let it go to your head or mistake it for some human right protected by the good will of any particular nation’s government.

ResearcherZero • November 28, 2024 2:27 AM

@Jesse Thompson

Re:Hundreds of thousands of US citizens live abroad. Thousands more need to access these services while on vacation.

The Geoblocking only blocks users on Tor. It does not block users using a regular browser to file their tax returns. Anyone overseas can still access the the IRS website.

If conflating whistleblowers, politicians, and policy with tax returns. Read this:

‘https://www.biometricupdate.com/202411/australias-debate-on-age-verification-for-social-media-reaches-parliament

ResearcherZero • November 28, 2024 3:49 AM

@Jesse Thompson

“88% of geoblocked domains do not serve informative notice of why they are blocked.”

Then the paper makes recommendations about how the situation can be improved.

ResearcherZero • November 28, 2024 5:29 AM

Without accurate data you cannot define the problem and implement a solution. Half the population does not vote, or stand up for it’s rights. If you do not understand the issues, there is little chance that anything will change. No one is going to change things for you.

There is no savior. There is only yourselves. You must make the changes for yourselves.

Half of Americans don’t vote…

‘https://apnews.com/projects/election-2024-our-very-complicated-democracy/election-2024-why-americans-dont-vote-episode-6.html

Few understand what government does and few vote based on democratic values.
https://projects.fivethirtyeight.com/non-voters-poll-2020-election/

Instead voters make their choices based on perceptions of strength and other ideals.

https://news.berkeley.edu/2024/07/16/berkeley-scholar-warns-u-s-liberals-either-get-tough-or-get-ready-to-lose/

ResearcherZero • November 28, 2024 6:18 AM

Russian plans to disconnect RuNet from international internet.

‘https://jamestown.org/program/russia-ramps-up-internet-censorship/

Lost visibility in the Russian IP space.
https://isc.sans.edu/diary/31476

Leaked files show how China and Russia cooperate to block their citizens.
https://www.rferl.org/a/russia-china-internet-censorship-collaboration/32350263.html

Jelo 117 • November 28, 2024 4:18 PM

Geoblocking sometimes is appropriate in defense but organizations defend their networks by allowing connections only from pre-registered/vetted devices, regardless of location (nearest neighbor or not), user credentials, etc.

ResearcherZero • November 30, 2024 7:29 AM

Pakistan’s new national internet “firewall”

‘https://www.aljazeera.com/news/2024/11/26/pakistan-tests-china-like-digital-firewall-to-tighten-online-surveillance

Technical censorship used to suppress access to online content and independent reporting.
https://freedomhouse.org/report/freedom-net/2024/struggle-trust-online

How does a national firewall work?
https://www.amnesty.org/en/latest/campaigns/2024/11/how-do-authorities-use-firewalls-and-other-tools-of-internet-control/

The Scale of Geoblocking by Nation

Comments

Leave a comment Cancel reply