Class 13 Introduction to Anonymity CIS 755: Advanced Computer Security Spring 2014 Eugene Vasserman http://www.cis.ksu.edu/~eyv/CIS755_S 14/
Welcome message from author
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Class 13Introduction to Anonymity
CIS 755: Advanced Computer SecuritySpring 2014
Eugene Vasserman
http://www.cis.ksu.edu/~eyv/CIS755_S14/
Administrative stuff
• Quizzes and Exam II– Scheduling– Format
Anonymity Concepts
• Privacy– Confidentiality
• Anonymity/Pseudonymity– Unobservability– Unlinkability
Dining Cryptographers
• Three people toss coins: heads=1, tails=0• Menus hide right-hand coin• XOR your coin flip result and left
neighbor’s result• Report value to everyone• Report opposite value to send a single bit• If the sum is odd, someone sent a message
Dining Cryptographers II
• Slow• Error-prone• Needs tamper detection• Does not scale• Provides unobservability
Unobservability
• k-anonymity (scalable dining cryptographers)– Must be implemented very carefully
• Link padding– Inefficient– Cover traffic knowledge
Unlinkability
• Sender can’t identify receiver• Receiver can’t identify sender• Neither knows who the other is
– How do we handle authentication?
• Unobservability implies unlinkability (?)
For Bob For Bob from Alicefrom AliceFor Carol For Carol from Alicefrom AliceFor David For David from Alicefrom Alice
Onion Encryption
Message for BobWrapping for CarolWrapping for Doug
Onion Encryption IIBob
Alice
Wrapping for Edward
Edward
Doug
Carol
Chaum MixesBob
Alice
Output in lexographic order
Global AdversaryBob
Alice
Chaum Mix CascadeBob
Alice
Anonymous Reply
• Address for replies:
• Reply:
• Mix0 decrypts N,A; sends:
• Mix decrypting reply does not know destination• Mix encrypting reply does not know source
Mixminion
A
B
C
D
E Bob
A,B,C,D,E
Alice
Bob
Problems with MixMinon
• Centralized entities required– Availability failure– Anonymity failure (how?)
• Malicious nodes:– Control entry and exit– Unlikely
Anonymous Email
• High-latency• Low-throughput• Provides unlinkability
– Have to be careful about authentication
• No default end-to-end confidentiality (PGP)– Actually, there is for replies
• Secure against global adversary
Anonymous Web Browsing
• Low-latency• Medium-throughput• Server does not know client• Provides sender unlinkability
– Have to be careful about authentication
• No default end-to-end confidentiality (SSL)• NOT secure against global adversary
Tor
A
B
C
TCP over TCP (UGH!)
Anonymous Web Services
• Web service does not know client• Client does not know web service• Provides sender and receiver unlinkability
• Rendezvous
Tor Hidden Services
A
B
C
D
E
F
Questions?
Reading discussion
Related Documents
![Z XhZeY Yf^R Z^a]R eRS]V^ZTc`TYZadW`cZ^^ZXcR ed · Re eYV 4R_RUR 4`f_TZ] W`c eYV 2ced, Rd Ac`XcR^^Z_X 4``cUZ_Re`c Re WV^Z_Zde ^VUZR Rce TV_ecV DefUZ` II R_U Rd 6UZe`c Z_ 4YZVW `W](https://static.cupdf.com/doc/110x72/5e8c99760be2154ad20b6e80/z-xhzey-yfr-zar-ersvztctyzadwczzxcr-ed-re-eyv-4rrur-4ftz-wc-eyv-2ced.jpg)
![GRAPEVIN TUSCANY’S E · eYV TYRcT`R] XcZ]]+ 3ZdeVTTR R]]R 7Z`cV_eZ_R E 3`_V deVR\ ]R^S ^ZiVU XcZ]] DaVTZR]ZkVU Z_ dVRW``U UZdYVd hZeY WcVdY WZdY VgVcj URj :_ eYV XcVV_ =fTTR T`f_ecjdZUV](https://static.cupdf.com/doc/110x72/5f3e787676be4858c16e1a05/grapevin-tuscanyas-e-eyv-tyrctr-xcz-3zdevttr-rr-7zcvezr-e-3v-devr.jpg)
![Disclaimer - Seoul National Universitys-space.snu.ac.kr/bitstream/10371/122336/1/000000140736.pdf · dVbfVnTVd Woc eYV XVnVd ingo]gVU in UcfX aYRcmRTokinVeiTd (GB) RnU aYRcmRToUjnRmiTd](https://static.cupdf.com/doc/110x72/5e2f7c9cf78a2632964084e0/disclaimer-seoul-national-universitys-spacesnuackrbitstream103711223361.jpg)
