Passive-attack analysis for connection-based anonymity systems

Serjantov, Andrei; Sewell, Peter

doi:10.1007/s10207-004-0059-3

Cited by 40 publications

(47 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While they are still considered "low-latency" connection-oriented approaches compared to slower message-based anonymity systems [20], they still exhibit non-trivial overhead and noticeable delay (as observed in Figure 1. In particular, a recent usability study [6] of Tor found that DNS requests were 40 times slower than direct connections.…”

Section: Related Workmentioning

confidence: 97%

A flexible in-network IP anonymization service

Mendonca

Seetharaman²

2012

2012 IEEE International Conference on Communications (ICC)

View full text Add to dashboard Cite

User privacy on the Internet has been an increasing concern in recent years. With the proliferation and sophistication of information services, data mining, and search engines, a simple network address may be used to reveal a great deal of information about a user, including location, identity, and behavior. Existing approaches to privacy, however, make unacceptable tradeoffs between performance and anonymity. For example, Tor [5] attempts to provide strong anonymity by withholding trust from third-party relays. We believe an acceptable level of privacy can be provided to most users, with noticeably lower latency and throughput impact, by working with the network provider.In this paper, we introduce AnonyFlow, an in-network anonymization service designed to efficiently and seamlessly provide privacy to users as they communicate with other endpoints and services. We design, implement, and evaluate an OpenFlow-based prototype of AnonyFlow that achieves endpoint anonymity without compromising on throughput or latency.

show abstract

Section: Related Workmentioning

confidence: 97%

A flexible in-network IP anonymization service

Mendonca

Seetharaman²

2012

2012 IEEE International Conference on Communications (ICC)

View full text Add to dashboard Cite

show abstract

“…Serjantov et al [8], for example, proposes the use of "spikes" in the traffic to find the communication relationship between users. Fu al.…”

Section: Modern Traffic Analysismentioning

confidence: 99%

“…Many attacks against MIXes and networks of MIXes exist. For example, Serjantov and Sewell [8] analyzed the possibility of a lone flow on an input link of a MIX. If the rate of this lone input flow is approximately equal to the rate of a flow out of the MIX, this pair of input and outflow flows are correlated.…”

Section: Modern Traffic Analysismentioning

confidence: 99%

Privacy of encrypted voice-over-IP

Leila

Bettati

2007

2007 IEEE International Conference on Systems, Man and Cybernetics

View full text Add to dashboard Cite

In this paper, we present an early study on how timing-based traffic analysis attacks can be used to reconstruct the communication on end-to-end VOIP systems by taking advantage of the reduction or suppression of the generation of traffic whenever the sender detects a voice inactivity period. We describe a simple Bayesian classifier to identify simple voice signals from the pattern of packet timings. We then proceed to incorporate context awareness by using a Hidden Markov model. Experiments with very simple symbols show that the effectiveness to reconstruct the voice signal depends significantly on the quality of collected silence suppression information. We conclude by identifying a number of problems that need to be further studied in order to effectively assess the danger of silence suppression based attacks on VOIP systems.

show abstract

“…B. N. Levine et al [52] presented a technique to thwart timing attacks in Mix-based systems. A. Serjantov and P. Sewell [53] investigated the time analysis for connection-based systems, e.g., Mix-based systems. X. Fu et al [54,55] proposed several attacking models based on traffic analysis, which are effective to thwart the anonymity in both wired and wireless systems.…”

Section: Attacking Attempts In Anonymous Systemsmentioning

confidence: 99%

Survey on Anonymity in Unstructured Peer-to-Peer Systems

Xiao

2008

J. Comput. Sci. Technol.

View full text Add to dashboard Cite

Although anonymizing Peer-to-Peer (P2P) networks often means extra cost in terms of transfer efficiency, many systems try to mask the identities of their users for privacy consideration. By comparison and analysis of existing approaches, we investigate the properties of unstructured P2P anonymity, and summarize current attack models on these designs. Most of these approaches are path-based, which require peers to pre-construct anonymous paths before transmission, thus suffering significant overhead and poor reliability. We also discuss the open problems in this field and propose several future research directions.

show abstract

Passive-attack analysis for connection-based anonymity systems

Cited by 40 publications

References 20 publications

A flexible in-network IP anonymization service

A flexible in-network IP anonymization service

Privacy of encrypted voice-over-IP

Survey on Anonymity in Unstructured Peer-to-Peer Systems

Contact Info

Product

Resources

About