Presentation is loading. Please wait.

Presentation is loading. Please wait.

Contributors: Connor McCoy

Published byShinta Siska Tedja Modified over 5 years ago

Similar presentations

Presentation on theme: "Contributors: Connor McCoy"— Presentation transcript:

1 Contributors: Connor McCoy
How Many Messages are You Anonymous For: Analyzing intersection attacks on mix networks Contributors: Connor McCoy

2 Problem Problem Objectives Approach Metrics Demo Results Ramifications
Overview Problem Problem Objectives Approach Metrics Demo Results Ramifications Sources Questions

3 Problem 1 Problem Because mix networks have no structure, they are flexible, scalable, and extendable. But… mix networks inherently are vulnerable to intersection attacks. *Illustrations from Lecture 5. Can say a lot here: compare to crowds, onions, cascades.

4 Problem Original Question:
Given a limited number of messages N, can a number of mixes M be found to guarantee an Anonymity Set of a desired size? Revised Question: Given as much input as possible, can an Anonymity Set of S size be guaranteed for N messages? **If it’s not possible, or viable, to gather sufficient input to make a guarantee, which parameters are troublesome? Does a reasonable solution exist? Initial thoughts, reason for changes.

5 Objectives Project Focus
Explore the variables influencing a sender’s anonymity on a mix network. Develop an algorithm NumSafeMessages(|AS|min, ...)

6 Approach Method of Approach
Part 1: Write a windows desktop application in C#/XAML to simulate intersection attacks on mix networks customized with the aforementioned input parameters. * If possible, using a diagramming library, visually depict the simulation in progress. Part 2: I’ll use the software developed in Part 1 to answer the question “How many messages are you anonymous for?”.

7 Metrics 1 Method of Approach
Part 1: The software usefully simulates an intersection attack given input parameters. The simulation returns a global passive attacker’s view of the sender’s anonymity set after each round.

8 Metrics 2 Method of Approach
Part 2: Analysis aided by Part 1 results in a function which given the needed input parameters returns the number of messages for which a desired anonymity set size holds.

9 Progress Overview of UI Scenario 1: mix cascade
Demo Progress Overview of UI Scenario 1: mix cascade Scenario 2: mix network redux

10 Preliminary Results 1 Progress
Traffic by other senders is unpredictable. Therefore, a guarantee is impossible without active measures (dummy messages). However, if average traffic is known w.r.t. targeted sender, approximations can be made. Let Ps be the probability of sender s in St’s AS sending a message in the same round St sends one. Then, Entropy = - Sum Ps log2(Ps) 2^Entropy = AS for next round. AS for round R = 2^Entropy where Ps,r = Ps^r Holds for simple case where every message goes through at least 1 honest mix. EAS must be performed otherwise.

11 Preliminary Results 2 Progress
f = NumSafeMessages(|AS|min, AS, Ps) = ? g = |AS|min(R) = 2^[- Sum (Psn^R) log2(Psn^R)] f = g-1, given EAS = AS Holds for simple case where every message goes through at least 1 honest mix. EAS must be performed otherwise.

12 Possible Ramifications Progress
Knowing enough Ps’s and enough about network configuration (relation of number of messages to rounds, that every message goes through 1 mix) can provide a conservative estimate of AS for a message… but that’s not practical! The only party that really knows a sender’s AS on a mix network is a GPA… Closing Question: Is it viable to implement a friendly, GPA such that it can warn users when their degree of anonymity becomes below their desired level? Can the risk of this GPA providing a single point of failure be mitigated? Holds for simple case where every message goes through at least 1 honest mix. EAS must be performed otherwise.

13 References Resources and References
Generalising Mixes by Diaz and Serjantov (Mix Types) Crowds: Anonymity for Web Transactions by Michael Reiter and Aviel Rubin. (Degree of Anonymity) The Disadvantages of Free MIX Routes and How to Overcome Them by Berthold, Pfitzmann, and Standtke (Mix Network)

14

15 Excerpt (Reference 3) Back
4.1 Motivation There still exists a controversial discussion, which kind of a MIX configuration is the better one. The advocates of the MIX-network are always pointing out that there are the following advantages: Each user can decide on his own, which MIXes he wants to trust. Because an attacker has the best chance to observe a user, if he controls as many MIXes as possible (or even all MIXes), it seems that a MIX cascade is extremely unsuitable. 1. In this case an attacker knows exactly which MIXes he has to control in order to observe a user successfully. But if the user can choose his own route, he can exclude MIXes, which seem untrustworthy to him and an attacker has to control much more MIXes in order to achieve the same probability to attack successfully. The community of users could publish which MIXes are not trustworthy and so would prevent attacks. 2. Because a MIX network could theoretically grow up to an infinite number of MIXes, the anonymity group could also raise to an infinite size. Every user can choose an arbitrary route of MIXes and so an observer could not detect, messages of which users a MIX currently processes. 3. There exists no structure, so a MIX network is very flexible, scalable and extendable. It could be realised as a fault-tolerant network. The only thing, that must be done, is to publish, when a MIX is inserted into or removed from the network. Such a system would be predestined for usage in the Internet. The Disadvantages of Free MIX Routes and How to Overcome Them by Berthold, Pfitzmann, and Standtke (Mix Network)

Download ppt "Contributors: Connor McCoy"

Similar presentations

A Probabilistic Analysis of Onion Routing in a Black-box Model 10/29/2007 Workshop on Privacy in the Electronic Society Aaron Johnson (Yale) with Joan.

A Probabilistic Analysis of Onion Routing in a Black-box Model 10/29/2007 Workshop on Privacy in the Electronic Society Aaron Johnson (Yale) with Joan.
Definition of the Anonymity of Mix Network Runs Andrei Serjantov University of Cambridge Computer Laboratory.

Definition of the Anonymity of Mix Network Runs Andrei Serjantov University of Cambridge Computer Laboratory.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
The Sniper Attack: Anonymously Deanonymizing and Disabling the Tor Network Rob Jansen et. al NDSS 2014 Presenter: Yue Li Part of slides adapted from R.

The Sniper Attack: Anonymously Deanonymizing and Disabling the Tor Network Rob Jansen et. al NDSS 2014 Presenter: Yue Li Part of slides adapted from R.
Message Splitting Against the Partial Adversary Andrei Serjantov The Free Haven Project (UK) Steven J Murdoch University of Cambridge Computer Laboratory.

Message Splitting Against the Partial Adversary Andrei Serjantov The Free Haven Project (UK) Steven J Murdoch University of Cambridge Computer Laboratory.
Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.
Models and Security Requirements for IDS. Overview The system and attack model Security requirements for IDS –Sensitivity –Detection Analysis methodology.

Models and Security Requirements for IDS. Overview The system and attack model Security requirements for IDS –Sensitivity –Detection Analysis methodology.
Peer-to-peer archival data trading Brian Cooper Joint work with Hector Garcia-Molina (and others) Stanford University.

Peer-to-peer archival data trading Brian Cooper Joint work with Hector Garcia-Molina (and others) Stanford University.
Two main requirements: 1. Implementation Inspection policies (scheduling algorithms) that will extand the current AutoSched software : Taking to account.

Two main requirements: 1. Implementation Inspection policies (scheduling algorithms) that will extand the current AutoSched software : Taking to account.
Crowds: Anonymity for Web Transactions Paper by: Michael K. Reiter and Aviel D. Rubin, Presented by Eric M. Busse Portions excerpt from Crowds: Anonymity.

Crowds: Anonymity for Web Transactions Paper by: Michael K. Reiter and Aviel D. Rubin, Presented by Eric M. Busse Portions excerpt from Crowds: Anonymity.
Comparing Distributions I: DIMAC and Fishers Exact By Peter Woolf University of Michigan Michigan Chemical Process Dynamics and Controls.

Comparing Distributions I: DIMAC and Fishers Exact By Peter Woolf University of Michigan Michigan Chemical Process Dynamics and Controls.
Academic Advisor: Prof. Ronen Brafman Team Members: Ran Isenberg Mirit Markovich Noa Aharon Alon Furman.

Academic Advisor: Prof. Ronen Brafman Team Members: Ran Isenberg Mirit Markovich Noa Aharon Alon Furman.
A General approach to MPLS Path Protection using Segments Ashish Gupta Ashish Gupta.

A General approach to MPLS Path Protection using Segments Ashish Gupta Ashish Gupta.
Modelling and Analysing of Security Protocol: Lecture 9 Anonymous Protocols: Theory.

Modelling and Analysing of Security Protocol: Lecture 9 Anonymous Protocols: Theory.
Anonymous Communication Luis von Ahn Andrew Bortz Nick Hopper The Aladdin Center Carnegie Mellon University.

Anonymous Communication Luis von Ahn Andrew Bortz Nick Hopper The Aladdin Center Carnegie Mellon University.
Generic Simulator for Users' Movements and Behavior in Collaborative Systems.

Generic Simulator for Users' Movements and Behavior in Collaborative Systems.
Toward Prevention of Traffic Analysis Fengfeng Tu 11/26/01.

Toward Prevention of Traffic Analysis Fengfeng Tu 11/26/01.
On the Anonymity of Anonymity Systems Andrei Serjantov (anonymous)

On the Anonymity of Anonymity Systems Andrei Serjantov (anonymous)
Www.sti-innsbruck.at © Copyright 2012 STI INNSBRUCK www.sti-innsbruck.at Tor project: Anonymity online.

© Copyright 2012 STI INNSBRUCK Tor project: Anonymity online.
Visual 3. 1 Lesson 3 Risk Assessment and Risk Mitigation.

Visual 3. 1 Lesson 3 Risk Assessment and Risk Mitigation.

Similar presentations

Ads by Google