Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem

Yi Ting Chua; Ben Collier

doi:10.1109/eCrime47957.2019.9037500

Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem

Yi Ting Chua, Ben Collier

School of Social and Political Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The “Great Firewall of China” (GFW) has become a familiar trope in information security circles. China is compar- atively shut off from the rest of the Internet, with extensive censorship and blocking of websites, especially those hosted outside China. The Chinese public use a variety of methods to circumvent the extensive online censorship practised by the Chinese state. In scaling the “Great Firewall”, these ordinary users of the Internet now make use of so-called “airport services” which allow tunnelling through to censored websites. This has resulted in the emergence of both an illicit ecosystem of censorship circumvention providers and a population of scammers who set up fake or unreliable services to con these would-be everyday Internet freedom enthusiasts. We have discovered, through scraping the public chat channels used by “airport” providers, that this anti-censorship ecosystem is beginning to develop highly organised methods of self-policing, making co-ordinated use of techniques associated with malicious cybercrime to force these scammers offline and promote a healthy market. While so-called “booter” services - websites where users can purchase Denial of Service attacks for a small fee - have generally been used for malicious purposes, amusement, protest, or extortion, our research suggests that in the Chinese censorship circumvention market they are being used for internal policing.

Original language	English
Title of host publication	2019 APWG Symposium on Electronic Crime Research (eCrime)
Publisher	Institute of Electrical and Electronics Engineers
Number of pages	9
ISBN (Electronic)	9781728163833
ISBN (Print)	9781728163840
DOIs	https://doi.org/10.1109/eCrime47957.2019.9037500
Publication status	Published - 1 Nov 2019
Event	E-Crime Symposium on Electronic Crime Research, 2019 - Pittsburgh, United States Duration: 13 Nov 2019 → 15 Nov 2019 https://apwg.org/ecrime2019/

Publication series

Name	APWG Symposium on Electronic Crime Research (eCrime)
Publisher	IEEE Xplore
ISSN (Print)	2159-1237
ISSN (Electronic)	2159-1245

Conference

Conference	E-Crime Symposium on Electronic Crime Research, 2019
Country/Territory	United States
City	Pittsburgh
Period	13/11/19 → 15/11/19
Internet address	https://apwg.org/ecrime2019/

Keywords / Materials (for Non-textual outputs)

China
cybercrime
censorship
DDoS

Access to Document

10.1109/eCrime47957.2019.9037500

https://www.cl.cam.ac.uk/~ytc36/Fighting.pdfLicence: All Rights Reserved

1 Not started
1 Active

Emerging digital harms
Collier, B. (Principal Investigator)
1/10/18 → …
Project: Research
CrimeBB collaborations with the Cambridge Cybercrime Centre
Collier, B. (Principal Investigator)
Project: Research

Cite this

@inproceedings{b9d643bdf2fb468abab5b60cdf43ae92,

title = "Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem",

abstract = "The “Great Firewall of China” (GFW) has become a familiar trope in information security circles. China is compar- atively shut off from the rest of the Internet, with extensive censorship and blocking of websites, especially those hosted outside China. The Chinese public use a variety of methods to circumvent the extensive online censorship practised by the Chinese state. In scaling the “Great Firewall”, these ordinary users of the Internet now make use of so-called “airport services” which allow tunnelling through to censored websites. This has resulted in the emergence of both an illicit ecosystem of censorship circumvention providers and a population of scammers who set up fake or unreliable services to con these would-be everyday Internet freedom enthusiasts. We have discovered, through scraping the public chat channels used by “airport” providers, that this anti-censorship ecosystem is beginning to develop highly organised methods of self-policing, making co-ordinated use of techniques associated with malicious cybercrime to force these scammers offline and promote a healthy market. While so-called “booter” services - websites where users can purchase Denial of Service attacks for a small fee - have generally been used for malicious purposes, amusement, protest, or extortion, our research suggests that in the Chinese censorship circumvention market they are being used for internal policing.",

keywords = "China, cybercrime, censorship, DDoS",

author = "Chua, {Yi Ting} and Ben Collier",

year = "2019",

month = nov,

day = "1",

doi = "10.1109/eCrime47957.2019.9037500",

language = "English",

isbn = "9781728163840",

series = "APWG Symposium on Electronic Crime Research (eCrime)",

publisher = "Institute of Electrical and Electronics Engineers",

booktitle = "2019 APWG Symposium on Electronic Crime Research (eCrime)",

address = "United States",

note = "E-Crime Symposium on Electronic Crime Research, 2019 ; Conference date: 13-11-2019 Through 15-11-2019",

url = "https://apwg.org/ecrime2019/",

}

Chua, YT & Collier, B 2019, Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem. in 2019 APWG Symposium on Electronic Crime Research (eCrime). APWG Symposium on Electronic Crime Research (eCrime), Institute of Electrical and Electronics Engineers, E-Crime Symposium on Electronic Crime Research, 2019, Pittsburgh, United States, 13/11/19. https://doi.org/10.1109/eCrime47957.2019.9037500

Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem. / Chua, Yi Ting; Collier, Ben.
2019 APWG Symposium on Electronic Crime Research (eCrime). Institute of Electrical and Electronics Engineers, 2019. (APWG Symposium on Electronic Crime Research (eCrime)).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Fighting the “blackheart airports”

T2 - E-Crime Symposium on Electronic Crime Research, 2019

AU - Chua, Yi Ting

AU - Collier, Ben

PY - 2019/11/1

Y1 - 2019/11/1

N2 - The “Great Firewall of China” (GFW) has become a familiar trope in information security circles. China is compar- atively shut off from the rest of the Internet, with extensive censorship and blocking of websites, especially those hosted outside China. The Chinese public use a variety of methods to circumvent the extensive online censorship practised by the Chinese state. In scaling the “Great Firewall”, these ordinary users of the Internet now make use of so-called “airport services” which allow tunnelling through to censored websites. This has resulted in the emergence of both an illicit ecosystem of censorship circumvention providers and a population of scammers who set up fake or unreliable services to con these would-be everyday Internet freedom enthusiasts. We have discovered, through scraping the public chat channels used by “airport” providers, that this anti-censorship ecosystem is beginning to develop highly organised methods of self-policing, making co-ordinated use of techniques associated with malicious cybercrime to force these scammers offline and promote a healthy market. While so-called “booter” services - websites where users can purchase Denial of Service attacks for a small fee - have generally been used for malicious purposes, amusement, protest, or extortion, our research suggests that in the Chinese censorship circumvention market they are being used for internal policing.

AB - The “Great Firewall of China” (GFW) has become a familiar trope in information security circles. China is compar- atively shut off from the rest of the Internet, with extensive censorship and blocking of websites, especially those hosted outside China. The Chinese public use a variety of methods to circumvent the extensive online censorship practised by the Chinese state. In scaling the “Great Firewall”, these ordinary users of the Internet now make use of so-called “airport services” which allow tunnelling through to censored websites. This has resulted in the emergence of both an illicit ecosystem of censorship circumvention providers and a population of scammers who set up fake or unreliable services to con these would-be everyday Internet freedom enthusiasts. We have discovered, through scraping the public chat channels used by “airport” providers, that this anti-censorship ecosystem is beginning to develop highly organised methods of self-policing, making co-ordinated use of techniques associated with malicious cybercrime to force these scammers offline and promote a healthy market. While so-called “booter” services - websites where users can purchase Denial of Service attacks for a small fee - have generally been used for malicious purposes, amusement, protest, or extortion, our research suggests that in the Chinese censorship circumvention market they are being used for internal policing.

KW - China

KW - cybercrime

KW - censorship

KW - DDoS

U2 - 10.1109/eCrime47957.2019.9037500

DO - 10.1109/eCrime47957.2019.9037500

M3 - Conference contribution

SN - 9781728163840

T3 - APWG Symposium on Electronic Crime Research (eCrime)

BT - 2019 APWG Symposium on Electronic Crime Research (eCrime)

PB - Institute of Electrical and Electronics Engineers

Y2 - 13 November 2019 through 15 November 2019

ER -

Fighting the “blackheart airports”: Internal policing in the Chinese censorship circumvention ecosystem

Abstract

Publication series

Conference

Keywords / Materials (for Non-textual outputs)

Access to Document

Fingerprint

Projects

Emerging digital harms

CrimeBB collaborations with the Cambridge Cybercrime Centre

Cite this