Presentation is loading. Please wait.

Presentation is loading. Please wait.

Some slides borrowed from Philippe Golle, Markus Jacobson

Published byJunior Wilkinson Modified over 6 years ago

Similar presentations

Presentation on theme: "Some slides borrowed from Philippe Golle, Markus Jacobson"— Presentation transcript:

1 Some slides borrowed from Philippe Golle, Markus Jacobson
Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks - I CS 436/636/736 Spring Nitesh Saxena Some slides borrowed from Philippe Golle, Markus Jacobson

2 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Course Admin Mid-term graded Scores posted Distributed Please pick-up if you haven’t already Any questions: please let me know HW3 posted Due Apr 11 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

3 A Case History: AOL Web Search Query Log Leakage
AOL's disturbing glimpse into users' lives, CNET News, August 7, 2006 21 million search queries posed over a 3-month long period; 650,000 users No user identification information released per se, but?? Search Log still available: 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

4 Other Scenarios where privacy is important
Location-based search Web browsing Electronic voting Electronic payments conversation 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

5 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Today’s Outline Anonymizing Network (or Mix Network) Anonymizing Network Applications Requirements Robustness Types of Anonymizing Networks Decryption based (Onion Routing) Re-encryption based 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

6 Definition: Mix Server (or Relay)
? Inputs Outputs A mix server: Receives inputs Produces “related” outputs The relationship between inputs and outputs is secret a mix server receives a set of inputs and produces related outputs so that the relationship between inputs and outputs can not be learned by anyone but the mix server. 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

7 Definition: Mix Network
A group of mix servers that operate sequentially. Server 1 Server 2 Server 3 Inputs Outputs ? ? ? a mix server receives a set of inputs and produces related outputs so that the relationship between inputs and outputs can not be learned by anyone but the mix server. 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

8 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Applications Hide:  “who voted for whom?”  “who paid whom?”  “who communicated with whom?”  “what is the source of a message?” Good for protecting privacy for election and communication Used as a privacy building block 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

9 Electronic Voting Demonstration
“Who do you like best?” Put your ballot into a WHITE envelope and put again in a RED one and sign on it Washington Lincoln Roosevelt Jerry 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

10 Electronic Voting Demo. (Cont’d)
Administrators will Verify signatures together 1st Admin. shuffles and opens RED envelopes Send them to 2nd Admin. 2nd Admin. shuffles again and opens WHITE envelopes Count ballots together 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

11 A real system for elections
Sign voter 1 (encr(encr (vote1))) Sign voter 2 (encr(encr (vote2))) . Sign voter n (encr(encr (voten))) vote1 vote2 vote3 . voten Mix Net Mix Net Jerry Washington Lincoln Roosevelt 9/11/2018

12 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Electronic Payment Demo. “Choose one person you like to pay $5” Put your ballot into an WHITE envelope and put again in a RED one and sign on it Name of the person ( ___________ ) Jerry 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

13 Electronic Payment Demo. (Cont’d)
Administrators will Verify signatures together Deduct $5 from each account 1st Admin. shuffles and opens RED envelopes Send them to 2nd Admin. 2nd Admin. shuffles again and opens WHITE envelopes Credit $5 to recipients 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

14 For Payments payee1 payee2 payee3 . payeen
Sign payer 1 (encr(encr (payee1))) Sign payer 2 (encr(encr (payee2))) . Sign payer n (encr(encr (payeen))) D E U C T Mix Net Jerry Credit Name (________ ) 9/11/2018

15 For email communication
. encr ( 1, addressee1) encr ( 2, addressee2) . encr ( n, addresseen) Mix Net To: Jerry Don’t forget to have lunch. Deliver 9/11/2018

16 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Other Uses Anonymous web browsing; web searching (Anonymizer) From LPWA homepage 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

17 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Other Uses (Cont’d) Location privacy for cellular devices Location-based service is GOOD ! Landline-phone calling to 911 in the US, 112 in Europe All cellular carrier since December 2005 RISK ! Location-based spam Harm to a reputation 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

18 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Other Uses Anonymous VoIP calls Anonymous acquisition of security patches 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

19 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Other uses (Cont’d) Sometimes abuses Avoid legislation (e.g., piracy) P2P sharing of copyright content Terrorism: communication with media Mumbai attacks 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

20 Principle Requirements : Chaum ’81 Message 1 Message 2 Privacy
server 1 server 2 server 3 Requirements : Privacy Efficiency Trust Robustness 9/11/2018

21 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks
Requirements Privacy Nobody knows who said what Efficiency Mixing is efficient (= practically useful) Trust How many entities do we have to trust? Robustness Will replacement cheaters be caught? What if a certain number of mix servers fail? 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

22 But what about robustness?
I ignore his output But what about robustness? and produce my own STOP encr(Berry) encr(Kush) Kush There is no robustness! 9/11/2018

23 Zoology of Mix Networks
Inputs Outputs ? Decryption Mix Nets [Cha81,…]: Inputs: ciphertexts Outputs: decryption of the inputs. Re-encryption Mix Nets[PIK93,…]: Outputs: re-encryption of the inputs 9/11/2018 Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks

24 First Solution Chaum ’81, implemented by Syverson, Goldschlag
Not robust (or: tolerates 0 cheaters for correctness) Requires every server to participate (and in the “right” order!) 9/11/2018

Download ppt "Some slides borrowed from Philippe Golle, Markus Jacobson"

Similar presentations

RPC Mixing: Making Mix-Nets Robust for Electronic Voting Ron Rivest MIT Markus Jakobsson Ari Juels RSA Laboratories.

RPC Mixing: Making Mix-Nets Robust for Electronic Voting Ron Rivest MIT Markus Jakobsson Ari Juels RSA Laboratories.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.

Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.

SECURITY IN E-COMMERCE VARNA FREE UNIVERSITY Prof. Teodora Bakardjieva.
Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks - I CS 436/636/736 Spring 2012 Nitesh Saxena Some slides borrowed from Philippe Golle, Markus.

Lecture 7.1: Privacy and Anonymity Using Anonymizing Networks - I CS 436/636/736 Spring 2012 Nitesh Saxena Some slides borrowed from Philippe Golle, Markus.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
Reusable Anonymous Return Channels

Reusable Anonymous Return Channels
Privacy and Anonymity Using Mix Networks* Nitesh Saxena CS392/6813 Some slides borrowed from Philippe Golle, Markus Jacobson.

Privacy and Anonymity Using Mix Networks* Nitesh Saxena CS392/6813 Some slides borrowed from Philippe Golle, Markus Jacobson.
Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Parallel Mixing Philippe Golle, PARC Ari Juels, RSA Labs.

Parallel Mixing Philippe Golle, PARC Ari Juels, RSA Labs.
CS 105 – Introduction to the World Wide Web  HTTP Request*  Domain Name Translation  Routing  HTTP Response*  Privacy and Cryptography  Adapted.

CS 105 – Introduction to the World Wide Web  HTTP Request*  Domain Name Translation  Routing  HTTP Response*  Privacy and Cryptography  Adapted.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
Electronic Voting Schemes and Other stuff. Requirements Only eligible voters can vote (once only) No one can tell how voter voted Publish who voted (?)

Electronic Voting Schemes and Other stuff. Requirements Only eligible voters can vote (once only) No one can tell how voter voted Publish who voted (?)
CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.
UMBC Protocol Meeting 10/01/03 Universal Re-encryption: For Mix-Nets and Other Applications (to appear CT-RSA ’04) Paul Syverson NRL Markus Jakobsson Ari.

UMBC Protocol Meeting 10/01/03 Universal Re-encryption: For Mix-Nets and Other Applications (to appear CT-RSA ’04) Paul Syverson NRL Markus Jakobsson Ari.
Spring 2003CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2003CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Staying Safe, Having Fun, And Cruising The ‘Net Daniel Owens IT Security Professional.

Staying Safe, Having Fun, And Cruising The ‘Net Daniel Owens IT Security Professional.
The Study of Security and Privacy in Mobile Applications Name: Liang Wei

The Study of Security and Privacy in Mobile Applications Name: Liang Wei
On the Anonymity of Anonymity Systems Andrei Serjantov (anonymous)

On the Anonymity of Anonymity Systems Andrei Serjantov (anonymous)

Similar presentations

Ads by Google