Information leaks in structured peer-to-peer anonymous communication systems

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2008, Pages 267-278

  Mittal, Prateek ^a   Borisov, Nikita ^a  

^a University of Illinois at Urbana Champaign   (United States)

Author keywords

Anonymity; Attacks; Information leaks; Peer to peer

Indexed keywords

ACTIVE ATTACK; ANONYMITY; ANONYMOUS COMMUNICATION; ANONYMOUS COMMUNICATION SYSTEMS; ATTACKS; INFORMATION-LEAKS; LOOKUPS; NEW APPROACHES; PASSIVE AND ACTIVE ATTACKS; PASSIVE ATTACKS; PEER-TO-PEER; SECURITY PARAMETERS; STRUCTURED PEER-TO-PEER;

COMMUNICATION SYSTEMS;

EID: 70349273917     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1455770.1455805     Document Type: Conference Paper

References (52)

1. A. Back, U. Möller, and A. Stiglic. Traffic analysis attacks and trade-offs in anonymity providing systems. In I. S. Moskowitz, editor, Information Hiding Workshop, volume 2137 of Lecture Notes in Computer Science, pages 245-247. Springer-Verlag, Apr. 2001.
2. K. Bauer, D. McCoy. D. Grunwald, T. Kohno, and D. Sicker. Low-resource routing attacks against Tor. In T. Yu, editor, Workshop on Privacy in Electronic Society, pages 11-20, November 2007.
3. S. M. Bellovin and D. A. Wagner, editors. IEEE Symposium on Security and Privacy, May 2003.
4. O. Berthold, H. Federrath, and M. Köhntopp. Project "anonymity and unobservability in the Internet". In L. Cranor, editor, Tenth conference on Computers, Freedom and Privacy, pages 57-65, New York, NY. USA, 2000. ACM.
5. N. Borisov. Anonymous Routing in Structured Peer-to-Peer Overlays. PhD thesis, UC Berkeley, May 2005.
6. N. Borisov, G. Danezis, P. Mittal, and P. Tabriz. Denial of service or denial of security? How attacks on reliability can compromise anonymity. In Wright and Syverson [52], pages 92-102.
7. M. Castro, P. Druschel, A. Ganesh, A. Rowstron, and D. S. Wallach. Secure routing for structured peer-to-peer overlay networks. In D. Culler and P. Druschel, editors, Symposium on Operating Systems Design and Implementation, pages 299-314. USENIX, Dec. 2002.
8. G. Ciaccio. Improving sender anonymity in a structured overlay with imprecise routing. In Danezis and Golle [13], pages 190-207.
9. D. Daly, D. D. Deavours, J. M. Doyle, P. G. Webster, and W. H. Sanders. Mobius: An extensible tool for performance and dependability modeling. In B. R. Haverkort, H. C. Bohnenkamp, and C. U. Smith, editors, Computer Performance Evaluation: Modelling Techniques and Tools, volume 1786, pages 332-336, Schaumburg, IL, Mar. 2000. Springer.
10. G. Danezis. Statistical disclosure attacks: Traffic confirmation in open environments. In Gritzalis, Vimercati, Samarati, and Katsikas, editors, Proceedings of Security and Privacy in the Age of Uncertainty, (SEC2003), pages 421-426, Athens, May 2003. IFIP TC11, Kluwer.
11. G. Danezis and R. Clayton. Route fingerprinting in anonymous communications. In IEEE Conference on Peer-to-Peer Computing, pages 69-72. IEEE Computer Society, Sept. 2006.
12. G. Danezis, R. Dingledine, and N. Mathewson. Mixminion: Design of a Type III anonymous remailer protocol. In Bellovin and Wagner [3], pages 2-15.
13. G. Danezis and P. Golle, editors. Sixth Workshop on Privacy Enhancing Technologies, volume 4258 of Lecture Notes in Computer Science, Cambridge, UK, June 2006. Springer.
14. G. Danezis and P. Syverson. Bridging and fingerprinting: Epistemic attacks on route selection. In N. Borisov and I. Goldberg, editors, Privacy Enhancing Technologies Symposium, volume 5134 of Lecture Notes in Computer Science, pages 151-166. Springer, July 2007.
15. C. Diaz, S. Seys, J. Claessens, and B. Preneel. Towards measuring anonymity. In Dingledine and Syverson [17], pages 184-188.
16. R. Dingledine, N. Mathewson, and P. Syverson. Tor: The second-generation onion router. In M. Blaze, editor, USENIX Security Symposium, pages 303-320. USENIX Association, Aug. 2004.
17. R. Dingledine and P. Syverson, editors. Privacy Enhancing Technologies Workshop, volume 2482 of Lecture Notes in Computer Science. Springer, April 2002.
18. J. Douceur. The Sybil Attack. In Druschel et al. [19], pages 251-260.
19. P. Druschel, F. Kaashoek, and A. Rowstron, editors. International Workshop on Peer-to-Peer Systems (IPTPS), volume 2429 of Lecture Notes in Computer-Science. Springer, Mar. 2002.
20. H. Federrath, editor. International Workshop on Design Issues in Anonymity and Unobservability, volume 2009 of Lecture Notes in Computer Science. Springer, July 2000.
21. M. J, Freedman and R, Morris. Tarzan: A peer-to-peer anonymizing network layer. In R. Sandhu, editor, ACM Conference on Computer and Communications Security, pages 193-206, New York, NY, USA, 2002. ACM.
22. D. Goodin. Tor at heart of embassy passwords leak. The Register, September 10 2007.
23. N. Hopper, E. Y. Vasserman, and E. Chan-Tin. How much anonymity does network latency leak? In Wright and Syverson [52], pages 82-91.
24. M. F. Kaashoek and D, R. Karger. Koorde: A simple degree-optimal distributed hash table. In F. Kaashoek and I. Stoica, editors. International Workshop on Peer-to-Peer Systems (IPTPS), volume 2735 of Lecture Notes in Computer Science, pages 98-107. Springer, Feb. 2003.
25. A. Kapadia and N. Triandopoulos. Halo: High-assurance locate for distributed hash tables. In C. Cowan and G. Vigna, editors. Network and Distributed System Security Symposium, pages 61-79, Feb. 2008.
26. D. Kesdogan, D. Agrawal, and S. Penz. Limits of anonymity in open environments. In F. A. Petitcolas, editor. Information Hiding Workshop, volume 2578 of Lecture Notes in Computer Science, pages 53-69. Springer-Verlag, October 2002.
27. N. Mathewson and R. Dingledine. Practical traffic analysis: Extending and resisting statistical disclosure. In D. Martin and A. Serjantov, editors, Workshop on Privacy Enhancing Technologies, volume 3424 of Lecture Notes in Computer Science, pages 17-24. Springer, May 2004.
28. A. Mislove, G. Oberoi, A. Post, C. Reis, P. Druschel, and D. S. Wallach. AP3: Cooperative, decentralized anonymous communication. In M. Castro, editor, ACM SIGOPS European Workshop. ACM, 2004.
29. U. Möller, L. Cottrell, P. Palfrader, and L. Sassaman. Mixmaster Protocol-Version 2. IETF Internet Draft, July 2003.
30. S. J. Murdoch. Hot or not: Revealing hidden services by their clock skew. In Wright and di Vimercati [51], pages 27-36.
31. S. J. Murdoch and G. Danezis. Low-cost traffic analysis of Tor. In V. Paxson and M. Waidner, editors, IEEE Symposium on Security and Privacy, pages 183-195, May 2005.
32. S. J. Murdoch and P. Zielinski. Sampled traffic analysis by Internet-exchange-level adversaries. In N. Borisov and P. Golle, editors, Privacy Enhancing Technologies Symposium, volume 4776 of Lecture Notes in Computer Science, pages 167-183. Springer, June 2007.
33. A. Nambiar and M. Wright. The Salsa simulator. http: //ranger.uta.edu/ ̃mwright/code/salsa-sims.zip.
34. A. Nambiar and M. Wright. Salsa: a structured approach to large-scale anonymity. In Wright and di Vimercati [51], pages 17-26.
35. P. Palfrader. Number of running Tor routers.
36. L. D. Paulson. News briefs. IEEE Computer, 39(4): 17-19, April 2006.
37. J.-F. Raymond. Traffic analysis: Protocols, attacks, design issues, and open problems. In Federrath [20], pages 10-29.
38. M. Reiter and A. Rubin. Crowds: Anonymity for web transactions. ACM Transactions on Information and System Security, l(l):66-92, June 1998.
39. M. Rennhard and B. Plattner. Introducing MorphMix: Peer-to-peer based anonymous Internet usage with collusion detection. In Workshop on Privacy in Electronic Society, pages 91-102, Washington, DC, USA, November 2002.
40. A. Rowstron and P. Druschel. Pastry: Scalable, distributed object location and routing for large-scale peer-to-peer systems. In G. Goos, J. Hartmanis, and J. van Leeuwen, editors, IFIP/ACM International Conference on Distributed Systems Platforms (Middleware), volume 2218 of Lecture Notes in Computer Science, pages 329-350. Springer. Nov. 2001.
41. A. Serjantov and G. Danezis. Towards an information theoretic metric for anonymity. In Dingledine and Syverson [17].
42. M. Sherr, B. T. Loo, and M. Blaze. Towards application-aware anonymous routing. In T. Jaeger, editor, Workshop on Hot Topics in Security. USENIX Association, Aug. 2007.
43. E. Sit and R. Morris. Security considerations for peer-to-peer distributed hash tables. In Druschel et al. [19], pages 261-269.
44. I. Stoica, R. Morris, D. Liben-Nowell, D. R. Karger, M. F. Kaashoek, F. Dabek, and H. Balakrishnan. Chord: A scalable peer-to-peer lookup protocol for Internet applications. IEEE/ACM Transactions on Networking, ll(l):17-32, 2003.
45. P. Syverson, G. Tsudik, M. Reed, and C. Landwehr. Towards an analysis of onion routing security. In Federrath [20], pages 96-114.
46. P. Tabriz and N. Borisov. Breaking the collusion detection mechanism of MorphMix. In Danezis and Golle [13], pages 368-383.
47. D. Wallach. A survey of peer-to-peer security issues. In M. Okada, B. Pierce, A. Scedrov, H. Tokuda, and A. Yonezawa, editors, International Symposium on Software Security, volume 2609 of Lecture Notes in Computer Science, pages 253-258. Springer, 2002.
48. M. Wright, M. Adler, B. N. Levine, and C. Shields. An analysis of the degradation of anonymous protocols. In P. van oorschot and V. Gligor, editors, Network and Distributed System Security Symposium, pages 39-50. Feb. 2002.
49. M. Wright, M. Adler, B. N. Levine, and C. Shields. Defending anonymous communication against passive logging attacks. In Bellovin and Wagner [3], pages 28-41.
50. M. Wrright, M. Adler, B. N. Levine, and C. Shields. The predecessor attack: An analysis of a threat to anonymous communications systems. ACM Transactions on Information and System Security, 4(7):489-522, November 2004.
51. R. Wright and S. D. C. di Vimercati, editors. The 13th ACM Conference on Computer and Communications Security, New York, NY, USA, Oct. 2006. ACM.
52. R. Wright and P. Syverson, editors. The U,th ACM Conference on Computer and Communications Security, New York, NY, USA, 2007. ACM.