Presentation is loading. Please wait.

Presentation is loading. Please wait.

Modeling Entropy in Onion Routing Networks

Published byNathalie Ducharme Modified over 5 years ago

Similar presentations

Presentation on theme: "Modeling Entropy in Onion Routing Networks"— Presentation transcript:

1 Modeling Entropy in Onion Routing Networks
Danish Lakhani Anthony Giardullo

2 Overview Global Passive Attacker With Some Compromised Nodes
Want a measure of how much anonymity the network provides

3 Measuring Anonymity

4 Anonymous Communication Model Towards an Information Theoretic Metric for Anonymity [Serjantov, Danezis ’02] A set of all users  in the system r  R {sender, recipient} is a role for the user w.r.t. a message M U : attacker’s a-priori probability distribution of the users u   having the role r w.r.t. message M s.t.

5 Entropy (as a measure of anonymity)
An effective (anonymous) set size S of an r anonymity probability distribution U is equal to the entropy of the distribution: where pu = U(u,r) S could be thought of as the number of additional bits of information needed by the attacker to completely identify the user u with role r for a message M if S = 0, the communication channel is completely compromised if S = log2||, the communication channel provides perfect R anonymity

6 Entropy of Mix Systems 1 1 S = 1.58496 Mix (= Entropy for the
Simple case: Onion Length = 1,  = 3 S = Mix (= Entropy for the Uniform Distrib. n = 3) pGood = 1 pGood = 1 1 Mix S = 0 (= No anonymity because of lack of mixing) pBad = (1-pGood) = 1 Attacker’s information

7 PRISM Condition  Action Condition  prob : Action prob : Action …

8 Problems with PRISM No Arrays/Data Structures
Each rule can only have a constant number of transitions Sometimes difficult to parameterize

9 Extend PRISM language Added array indexing
Added For Loops to create many rules Created PRISM files with tens of thousands of lines of code

10 Our First Model Fully connected network
Messages entering good nodes could be sent to every other node with equal probability Messages entering bad nodes are sent to a single next node

11

12

13

14 Better Model Model random network traffic Assume nodes “mix” traffic
Generate random multi-graph model

15 Parameters Probability a node is compromised
Total # messages (paths) in network Minimum length of a path Maximum length of a path Total # users Total # mix-nodes Random seed

16

17

18

19

20 Limitations Tried to minimize the number of reachable states in PRISM for our model PRISM could only handle up to around 100 nodes with 100 messages

21 Extending the Model Calculate entropy of the system given a maximum and minimum length for all message paths. Improved our modeled attacker’s knowledge Could not improve as much as we wanted to using PRISM

22 Example

Download ppt "Modeling Entropy in Onion Routing Networks"

Similar presentations

Randomness Conductors Expander Graphs Randomness Extractors Condensers Universal Hash Functions............

Randomness Conductors Expander Graphs Randomness Extractors Condensers Universal Hash Functions
A Formal Analysis of Onion Routing 10/26/2007 Aaron Johnson (Yale) with Joan Feigenbaum (Yale) Paul Syverson (NRL)

A Formal Analysis of Onion Routing 10/26/2007 Aaron Johnson (Yale) with Joan Feigenbaum (Yale) Paul Syverson (NRL)
Costas Busch Louisiana State University CCW08. Becomes an issue when designing algorithms The output of the algorithms may affect the energy efficiency.

Costas Busch Louisiana State University CCW08. Becomes an issue when designing algorithms The output of the algorithms may affect the energy efficiency.
Definition of the Anonymity of Mix Network Runs Andrei Serjantov University of Cambridge Computer Laboratory.

Definition of the Anonymity of Mix Network Runs Andrei Serjantov University of Cambridge Computer Laboratory.
LASTor: A Low-Latency AS-Aware Tor Client

LASTor: A Low-Latency AS-Aware Tor Client
Self-Organized Anonymous Authentication in Mobile Ad Hoc Networks Julien Freudiger, Maxim Raya and Jean-Pierre Hubaux SECURECOMM, 2009.

Self-Organized Anonymous Authentication in Mobile Ad Hoc Networks Julien Freudiger, Maxim Raya and Jean-Pierre Hubaux SECURECOMM, 2009.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
Trust-based Anonymous Communication: Models and Routing Algorithms Aaron Johnson Paul Syverson Roger Dingledine Nick Mathewson U.S. Naval Research Laboratory.

Trust-based Anonymous Communication: Models and Routing Algorithms Aaron Johnson Paul Syverson Roger Dingledine Nick Mathewson U.S. Naval Research Laboratory.
Balázs Sziklai Selfish Routing in Non-cooperative Networks.

Balázs Sziklai Selfish Routing in Non-cooperative Networks.
A Probabilistic Model for Road Selection in Mobile Maps Thomas C. van Dijk Jan-Henrik Haunert W2GIS, 5 April 2013.

A Probabilistic Model for Road Selection in Mobile Maps Thomas C. van Dijk Jan-Henrik Haunert W2GIS, 5 April 2013.
Message Splitting Against the Partial Adversary Andrei Serjantov The Free Haven Project (UK) Steven J Murdoch University of Cambridge Computer Laboratory.

Message Splitting Against the Partial Adversary Andrei Serjantov The Free Haven Project (UK) Steven J Murdoch University of Cambridge Computer Laboratory.
Slicing the Onion: Anonymous Routing without PKI Saurabh Shrivastava CS 259

Slicing the Onion: Anonymous Routing without PKI Saurabh Shrivastava CS 259
Cashmere: Resilient Anonymous Routing CS290F March 7, 2005.

Cashmere: Resilient Anonymous Routing CS290F March 7, 2005.
Responder Anonymity and Anonymous Peer-to-Peer File Sharing. by Vincent Scarlata, Brian Levine and Clay Shields Presentation by Saravanan.

Responder Anonymity and Anonymous Peer-to-Peer File Sharing. by Vincent Scarlata, Brian Levine and Clay Shields Presentation by Saravanan.
Modelling and Analysing of Security Protocol: Lecture 9 Anonymous Protocols: Theory.

Modelling and Analysing of Security Protocol: Lecture 9 Anonymous Protocols: Theory.
1 Lecture 24: Interconnection Networks Topics: communication latency, centralized and decentralized switches (Sections 8.1 – 8.5)

1 Lecture 24: Interconnection Networks Topics: communication latency, centralized and decentralized switches (Sections 8.1 – 8.5)
P-Grid Presentation by Thierry Lopez P-Grid: A Self-organizing Structured P2P System Karl Aberer, Philippe Cudré-Mauroux, Anwitaman Datta, Zoran Despotovic,

P-Grid Presentation by Thierry Lopez P-Grid: A Self-organizing Structured P2P System Karl Aberer, Philippe Cudré-Mauroux, Anwitaman Datta, Zoran Despotovic,
Towards an Analysis of Onion Routing Security Syverson, Tsudik, Reed, and Landwehr PET 2000 Presented by: Adam Lee 1/26/2006 Syverson, Tsudik, Reed, and.

Towards an Analysis of Onion Routing Security Syverson, Tsudik, Reed, and Landwehr PET 2000 Presented by: Adam Lee 1/26/2006 Syverson, Tsudik, Reed, and.
Preventing Active Timing Attacks in Low- Latency Anonymous Communication The 10 th Privacy Enhancing Technologies Symposium July 2010 Joan Feigenbaum Yale.

Preventing Active Timing Attacks in Low- Latency Anonymous Communication The 10 th Privacy Enhancing Technologies Symposium July 2010 Joan Feigenbaum Yale.
Toward Prevention of Traffic Analysis Fengfeng Tu 11/26/01.

Toward Prevention of Traffic Analysis Fengfeng Tu 11/26/01.

Similar presentations

Ads by Google