Hashing it out in public: Common failure modes of DHT-based anonymity schemes

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2009, Pages 71-80

  Tran, Andrew ^a   Hopper, Nicholas ^b   Kim, Yongdae ^b  

^a CARNEGIE MELLON UNIVERSITY   (United States)

^b UNIVERSITY OF MINNESOTA   (United States)

Author keywords

Anonymity; Peer to peer networks; Selective denial of service

Indexed keywords

ACTIVE ADVERSARY; ANONYMOUS COMMUNICATION SYSTEMS; ANONYMOUS ROUTING; DENIAL OF SERVICE; DESIGN FLAWS; DHT ROUTING; DISTRIBUTED HASH TABLE; PEER TO PEER; RELAY SELECTION; SECURITY MECHANISM; SECURITY REQUIREMENTS;

COMMUNICATION SYSTEMS; COMPUTER PRIVACY; DISTRIBUTED COMPUTER SYSTEMS; FAILURE ANALYSIS; NETWORK SECURITY; TELECOMMUNICATION NETWORKS; TRANSMISSION CONTROL PROTOCOL;

PEER TO PEER NETWORKS;

EID: 74049164513     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1655188.1655199     Document Type: Conference Paper

References (44)

1. BACK, A., MÖLLER, U., AND STIGLIC, A. Traffic analysis attacks and trade-offs in anonymity providing systems. In Proceedings of Information Hiding Workshop (IH 2001) (April 2001), I. S. Moskowitz, Ed., Springer-Verlag, LNCS 2137, pp. 245-257.
2. BENNETT, K., AND GROTHOFF, C. GAP - practical anonymous networking. In Proceedings of Privacy Enhancing Technologies workshop (PET 2003) (March 2003), R. Dingledine, Ed., Springer-Verlag, LNCS 2760, pp. 141-160.
3. BERTHOLD, O., AND LANGOS, H. Dummy traffic against long term intersection attacks. In Proceedings of Privacy Enhancing Technologies workshop (PET 2002) (April 2002), R. Dingledine and P. Syverson, Eds., Springer-Verlag, LNCS 2482.
4. BORISOV, N., DANEZIS, G., MITTAL, P., AND TABRIZ, P. Denial of service or denial of security? How attacks on reliability can compromise anonymity. In Proceedings of CCS 2007 (October 2007).
5. CASTRO, M., DRUSCHEL, P., GANESH, A., ROWSTRON, A., AND WALLACH, D. S. Secure routing for structured peer-to-peer overlay networks. In OSDI '02: Proceedings of the 5th symposium on Operating systems design and implementation (New York, NY, USA, 2002), ACM, pp. 299-314.
6. CHAKRAVARTY, S., STAVROU, A., AND KEROMYTIS, A. D. Identifying proxy nodes in a tor anonymization circuit. In SITIS '08: Proceedings of the 2008 IEEE International Conference on Signal Image Technology and Internet Based Systems (Washington, DC, USA, 2008), IEEE Computer Society, pp. 633-639.
7. CIACCIO, G. Improving sender anonymity in a structured overlay with imprecise routing. In Proceedings of the Sixth Workshop on Privacy Enhancing Technologies (PET 2006) (Cambridge, UK, June 2006), G. Danezis and P. Golle, Eds., Springer, pp. 190-207.
8. CLAYTON, R. A Few Design Critiques. at 3rd Workshop on Privacy Enhancing Technologies, 2003.
9. COTTRELL, L. Mixmaster and remailer attacks. online essay: http://web.archive.org/web/*/http: //obscura.com/~loki/remailer-essay. html, 1994.
10. DANEZIS, G. Statistical disclosure attacks: Traffic confirmation in open environments. In Proceedings of Security and Privacy in the Age of Uncertainty, (SEC2003) (Athens, May 2003), Gritzalis, Vimercati, Samarati, and Katsikas, Eds., IFIP TC11, Kluwer, pp. 421-426.
11. DANEZIS, G. The traffic analysis of continuous-time mixes. In Proceedings of Privacy Enhancing Technologies workshop (PET 2004) (May 2004), vol. 3424 of LNCS, pp. 35-50.
12. DANEZIS, G., AND CLAYTON, R. Route fingerprinting in anonymous communications. In P2P '06: Proceedings of the Sixth IEEE International Conference on Peer-to-Peer Computing (Washington, DC, USA, 2006), IEEE Computer Society, pp. 69-72.
13. DANEZIS, G., AND SERJANTOV, A. Statistical disclosure or intersection attacks on anonymity systems. In Proceedings of 6th Information Hiding Workshop (IH 2004) (Toronto, May 2004), LNCS.
14. DANEZIS, G., AND SYVERSON, P. Bridging and fingerprinting: Epistemic attacks on route selection. In Proceedings of the Eighth International Symposium on Privacy Enhancing Technologies (PETS 2008) (Leuven, Belgium, July 2008), N. Borisov and I. Goldberg, Eds., Springer, pp. 133-150.
15. DINGLEDINE, R., MATHEWSON, N., AND SYVERSON, P. Tor: The second-generation onion router. In Proceedings of the 13th USENIX Security Symposium (August 2004).
16. FEAMSTER, N., AND DINGLEDINE, R. Location diversity in anonymity networks. In Proceedings of the Workshop on Privacy in the Electronic Society (WPES 2004) (Washington, DC, USA, October 2004).
17. FREEDMAN, M. J., AND MORRIS, R. Tarzan: a peer-to-peer anonymizing network layer. In CCS '02: Proceedings of the 9th ACM conference on Computer and communications security (New York, NY, USA, 2002), ACM Press, pp. 193-206.
18. GÜLCÜ, C., AND TSUDIK, G. Mixing E-mail with Babel. In Proceedings of the Network and Distributed Security Symposium - NDSS '96 (February 1996), IEEE, pp. 2-16.
19. HOPPER, N., VASSERMAN, E. Y., AND CHAN - TIN, E. How much anonymity does network latency leak? In CCS '07: Proceedings of the 14th ACM conference on Computer and communications security (New York, NY, USA, 2007), ACM, pp. 82-91.
20. KATTI, S., COHEN, J., AND KATABI, D. Information slicing: Anonymity using unreliable overlays. In Proceedings of the 4th USENIX Symposium on Network Systems Design and Implementation (NSDI) (April 2007).
21. KESDOGAN, D., AGRAWAL, D., AND PENZ, S. Limits of anonymity in open environments. In Proceedings of Information Hiding Workshop (IH 2002) (October 2002), F. Petitcolas, Ed., Springer-Verlag, LNCS 2578.
22. LANDSIEDEL, O., PIMENIDIS, L., WEHRLE, K., NIEDERMAYER, H., AND CARLE, G. Core: A Peer-To-Peer Based Connectionless Onion Router. In Proceedings of IEEE GLOBECOM, Globalcommunications Conference (Washington DC, USA, November 2007).
23. LU, T., FANG, B., SUN, Y., AND CHENG, X. Wongoo: A peer-to-peer protocol for anonymous communication. In PDPTA (2004), H. R. Arabnia, Ed., CSREA Press, pp. 1102-1106.
24. MISLOVE, A., OBEROI, G., POST, A., REIS, C., DRUSCHEL, P., AND WALLACH, D. S. Ap3: cooperative, decentralized anonymous communication. In EW11: Proceedings of the 11th workshop on ACM SIGOPS European workshop (New York, NY, USA, 2004), ACM, p. 30.
25. MITTAL, P., AND BORISOV, N. Information leaks in structured peer-to-peer anonymous communication systems. In Proceedings of the 15th ACM Conference on Computer and Communications Security (CCS 2008) (Alexandria, Virginia, USA, October 2008), P. Syverson, S. Jha, and X. Zhang, Eds., ACM Press, pp. 267-278.
26. MURDOCH, S. J. Hot or not: Revealing hidden services by their clock skew. In Proceedings of CCS 2006 (October 2006).
27. MURDOCH, S. J., AND DANEZIS, G. Low-cost traffic analysis of tor. IEEE SP 00 (2005), 183-195.
28. MURDOCH, S. J., AND ZIELIŃ SKI, P. Sampled traffic analysis by internet-exchange-level adversaries. In Proceedings of the Seventh Workshop on Privacy Enhancing Technologies (PET 2007) (Ottawa, Canada, June 2007), N. Borosov and P. Golle, Eds., Springer.
29. NAMBIAR, A., AND WRIGHT, M. Salsa: A structured approach to large-scale anonymity. In Proceedings of CCS 2006 (October 2006).
30. PUTTASWAMY, K., SALA, A., WILSON, C., AND ZHAO, B. Protecting anonymity in dynamic peer-to-peer networks. In IEEE International Conference on Network Protocols (ICNP) (Oct. 2008), pp. 104-113.
31. RAYMOND, J.-F. Traffic Analysis: Protocols, Attacks, Design Issues, and Open Problems. In Proceedings of Designing Privacy Enhancing Technologies: Workshop on Design Issues in Anonymity and Unobservability (July 2000), H. Federrath, Ed., Springer-Verlag, LNCS 2009, pp. 10-29.
32. REITER, M., AND RUBIN, A. Crowds: Anonymity for web transactions. ACM Transactions on Information and System Security 1, 1 (June 1998).
33. RENNHARD, M., AND PLATTNER, B. Introducing MorphMix: peer-to-peer based anonymous Internet usage with collusion detection. In WPES '02: Proceedings of the 2002 ACM workshop on Privacy in the Electronic Society (New York, NY, USA, 2002), ACM Press, pp. 91-102.
34. ROWSTRON, A., AND DRUSCHEL, P. Pastry: Scalable, distributed object location and routing for large-scale peer-to-peer systems. In Middleware (2001).
35. SERJANTOV, A., DINGLEDINE, R., AND SYVERSON, P. From a trickle to a flood: Active attacks on several mix types. In Proceedings of Information Hiding Workshop (IH 2002) (October 2002), F. Petitcolas, Ed., Springer-Verlag, LNCS 2578.
36. SIT, E., AND MORRIS, R. Security considerations for peer-to-peer distributed hash tables. In IPTPS '01: Revised Papers from the First International Workshop on Peer-to-Peer Systems (London, UK, 2002), Springer-Verlag, pp. 261-269.
37. STOICA, I., MORRIS, R., KARGER, D., KAASHOEK, F., AND BALAKRISHNAN, H. Chord: A peer-to-peer lookup service for internet applications. In SIGCOMM (2001).
38. SYVERSON, P. F., GOLDSCHLAG, D. M., AND REED, M. G. Anonymous connections and onion routing. In IEEE Symposium on Security and Privacy (Oakland, California, 4-7 1997), pp. 44-54.
39. TRONCOSO, C., GIERLICHS, B., PRENEEL, B., AND VERBAUWHEDE, I. Perfect matching statistical disclosure attacks. In Proceedings of the Eighth International Symposium on Privacy Enhancing Technologies (PETS 2008) (Leuven, Belgium, July 2008), N. Borisov and I. Goldberg, Eds., Springer, pp. 2-23.
40. WALLACH, D. S. A survey of peer-to-peer security issues. In ISSS (2002), M. Okada, B. C. Pierce, A. Scedrov, H. Tokuda, and A. Yonezawa, Eds., vol. 2609 of Lecture Notes in Computer Science, Springer, pp. 42-57.
41. WRIGHT, M., ADLER, M., LEVINE, B. N., AND SHIELDS, C. Defending anonymous communication against passive logging attacks. In Proceedings of the 2003 IEEE Symposium on Security and Privacy (May 2003), pp. 28-43.
42. WRIGHT, M., ADLER, M., LEVINE, B. N., AND SHIELDS, C. The Predecessor Attack: An Analysis of a Threat to Anonymous Communications Systems. ACM Transactions on Information and System Security (TISSEC) 4, 7 (November 2004), 489-522.
43. ZHU, Y., AND HU, Y. Tap: A novel tunneling approach for anonymity in structured p2p systems. In ICPP (2004), IEEE Computer Society, pp. 21-28.
44. ZHUANG, L., ZHOU, F., ZHAO, B. Y., AND ROWSTRON, A. Cashmere: resilient anonymous routing. In NSDI'05: Proceedings of the 2nd conference on Symposium on Networked Systems Design & Implementation (Berkeley, CA, USA, 2005), USENIX Association, pp. 301-314.