Modified Onion Routing GYANRANJAN HAZARIKA AND KARAN MIRANI.

Slides:

Advertisements

Similar presentations

Aaron Johnson with Joan Feigenbaum Paul Syverson

Advertisements

Tor: The Second-Generation Onion Router

20.1 Chapter 20 Network Layer: Internet Protocol Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.

NETWORK LAYER (1) T.Najah AlSubaie Kingdom of Saudi Arabia Prince Norah bint Abdul Rahman University College of Computer Since and Information System NET331.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

How Much Anonymity does Network Latency Leak? Paper by: Nicholas Hopper, Eugene Vasserman, Eric Chan-Tin Presented by: Dan Czerniewski October 3, 2011.

Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.

Building a Peer-to-Peer Anonymizing Network Layer Michael J. Freedman NYU Dept of Computer Science Public Design Workshop September 13,

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

1 6/14/ :27 CS575Internetworking & Routers1 Rivier College CS575: Advanced LANs Chapter 13: Internetworking & Routers.

The Case for Network-Layer, Peer-to-Peer Anonymization Michael J. Freedman Emil Sit, Josh Cates, Robert Morris MIT Lab for Computer Science IPTPS’02March.

Responder Anonymity and Anonymous Peer-to-Peer File Sharing. by Vincent Scarlata, Brian Levine and Clay Shields Presentation by Saravanan.

Analysis of Onion Routing Presented in by Jayanthkumar Kannan On 10/8/03.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

Applied Cryptography for Network Security

Providing Anonymity Services in SIP L. Kazatzopoulos, K. Delakouridis, G.F. Marias PIMRC 2008 Sept. 15,

Tarzan: A Peer-to-Peer Anonymizing Network Layer Michael J. Freedman, NYU Robert Morris, MIT ACM CCS 2002

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

1 Chapter 13: Representing Identity What is identity Different contexts, environments Pseudonymity and anonymity.

Internet Protocol Security (IPSec)

CMSC 414 Computer (and Network) Security Lecture 25 Jonathan Katz.

A distributed Search Service for Peer-to-Peer File Sharing in Mobile Applications From U. of Dortmund, Germany.

Anonymity on the Web: A Brief Overview By: Nipun Arora uni-na2271.

Anonymizing Network Technologies Some slides modified from Dingledine, Mathewson, Syverson, Xinwen Fu, and Yinglin Sun Presenter: Chris Zachor 03/23/2011.

Network Security Sorina Persa Group 3250 Group 3250.

Tor (Anonymity Network) Scott Pardue. Tor Network  Nodes with routers within the network (entry, middle, exit)  Directory servers  Socket Secure (SOCKS)

© Copyright 2012 STI INNSBRUCK Tor project: Anonymity online.

8: Network Security8-1 Security in the layers. 8: Network Security8-2 Secure sockets layer (SSL) r Transport layer security to any TCP- based app using.

The Network Layer. Network Projects Must utilize sockets programming –Client and Server –Any platform Please submit one page proposal Can work individually.

Wireless security & privacy Authors: M. Borsc and H. Shinde Source: IEEE International Conference on Personal Wireless Communications 2005 (ICPWC 2005),

What is a Protocol A set of definitions and rules defining the method by which data is transferred between two or more entities or systems. The key elements.

1 Chapter 9 E- Security. Main security risks 2 (a) Transaction or credit card details stolen in transit. (b) Customer’s credit card details stolen from.

1 Section 10.9 Internet Security Association and Key Management Protocol ISAKMP.

Cosc 4765 SSL/TLS and VPN. SSL and TLS We can apply this generally, but also from a prospective of web services. Multi-layered: –S-http (secure http),

11 SECURING YOUR NETWORK PERIMETER Chapter 10. Chapter 10: SECURING YOUR NETWORK PERIMETER2 CHAPTER OBJECTIVES  Establish secure topologies.  Secure.

UNIT IP Datagram Fragmentation Figure 20.7 IP datagram.

1 The Internet and Networked Multimedia. 2 Layering  Internet protocols are designed to work in layers, with each layer building on the facilities provided.

Crowds: Anonymity for Web Transactions Michael K. Reiter Aviel D. Rubin Jan 31, 2006Presented by – Munawar Hafiz.

Lecture 14: Anonymity on the Web (cont) Modified from Levente Buttyan, Michael K. Reiter and Aviel D. Rubin.

Chapter 15 – Part 2 Networks The Internal Operating System The Architecture of Computer Hardware and Systems Software: An Information Technology Approach.

Network Security David Lazăr.

Rushing Attacks and Defense in Wireless Ad Hoc Network Routing Protocols ► Acts as denial of service by disrupting the flow of data between a source and.

CSC 600 Internetworking with TCP/IP Unit 7: IPv6 (ch. 33) Dr. Cheer-Sun Yang Spring 2001.

Computer Networking P2P. Why P2P? Scaling: system scales with number of clients, by definition Eliminate centralization: Eliminate single point.

Anonymity - Background R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide.

IPSec and TLS Lesson Introduction ●IPSec and the Internet key exchange protocol ●Transport layer security protocol.

P2PSIP Security Analysis and evaluation draft-song-p2psip-security-eval-00 Song Yongchao Ben Y. Zhao

The Silk Road: An Online Marketplace

Onion Routing R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide anonymity.

Supplemental Information on TOR (The Onion Router) CEH ed 8, Rev 4 CS3695 – Network Vulnerability Assessment & Risk Mitigation–

Chapter 7 – Confidentiality Using Symmetric Encryption.

Traffic Correlation in Tor Source and Destination Prediction PETER BYERLEY RINDAL SULTAN ALANAZI HAFED ALGHAMDI.

An Introduction to Mobile IPv4

Modified Onion Routing GYANRANJAN HAZARIKA AND KARAN MIRANI.

1 IPSec: An Overview Dr. Rocky K. C. Chang 4 February, 2002.

1 Anonymous Communications CSE 5473: Network Security Lecture due to Prof. Dong Xuan Some material from Prof. Joan Feigenbaum.

1 Anonymity. 2 Overview  What is anonymity?  Why should anyone care about anonymity?  Relationship with security and in particular identification 

Benjamin Knapic Nicholas Johnson.  “Tor is free software and an open network that helps you defend against a form of network surveillance that threatens.

Modified Onion Routing and its Proof of Concept By: Gyanranjan Hazarika.

Chapter 18 IP Security  IP Security (IPSec)

IT443 – Network Security Administration Instructor: Bo Sheng

Encapsulation/Decapsulation

0x1A Great Papers in Computer Security

Alex Guy packets (stars) tor routers users web servers (squares)

Anonymous Communication

Presentation transcript:

Modified Onion Routing GYANRANJAN HAZARIKA AND KARAN MIRANI

Onion Routing  Provides measures against traffic analysis.  Provides protection against eavesdropping.  Provides bi-directional anonymous communication.  Provides anonymous socket connection through a proxy server for easy deployment.

Implementation Overview Routing Topology  Creates an anonymous, bi- directional, real-time VC between initiator and responder.  Information is hidden by making a data stream pass through the anonymous circuit en route to its destination  Each node (except initiator’s proxy server) knows nothing but the previous and the next hops in the communication chain  Consists of the initiator, it’s proxy server, the responder’s proxy server, the responder and the nodes on the route between the initiator and responder

Onion Structure Initiator’s proxy identifies a series of routing nodes forming a route through the network. It then creates an onion which encapsulates the route. The basic onion structure depends on the route to the responder chosen by the initiators proxy. Based on this route the initiator’s proxy encrypts first for the responder’s proxy, then for the preceding node on the route and so on back to the first routing node to whom the onion will be sent

Formation & Delivery of Onion Sende(S)rS’s ProxyRouter 1Router 2R’s Proxy Receiver(R)

Limitations  It is assumed that the public key certificates for each node have been distributed to all others prior to operations.  No mechanism of checking message authenticity.  Single point of failure: If proxy server is compromised, then the entire system fails.  Two level encryptions for the header and each layer of onion.  No way to authenticate a returning participant in the network.  It is assumed that the proxy/routing nodes and the intermediate routing nodes know about each other in advance.

Proposed Modifications  Remove proxy servers  Use authentication code with message to protect against message corruption by an attacker  Use ‘Type’ field indicationg whether message can tolerate delay or not. If it can, then each routing node assumes the functionality of BINOMIAL MIX !!  Encrypt message with sec_keyxy rather than encrypting header and payload separately  Eliminate need of random bits in message by use of sex_keyxy

Thank You