Probable Innocence in the Presence of Independent Knowledge

ElSalamouny

Trustworthly Global Computing

2010

Self Cite

Abstract. The existing analysis of the Crowds anonymity protocol assumes that a participating member is either 'honest' or 'corrupted.' This paper generalises this analysis so that each member is assumed to maliciously disclose the identity of other nodes with a probability determined by her vulnerability to corruption. Within this model, the trust in a principal is defined to be the probability that she behaves honestly. We investigate the effect of such a probabilistic behaviour on the anonymity of the principals participating in the protocol, and formulate the necessary conditions to achieve 'probable innocence.' Using these conditions, we propose a generalised Crowds-Trust protocol which uses trust information to achieves 'probable innocence' for principals exhibiting probabilistic behaviour.

Section: Introductionmentioning

confidence: 82%

Section: Probable Innocencementioning

confidence: 99%

See 1 more Smart Citation

Trust in Crowds: Probabilistic Behaviour in Anonymity Protocols

ElSalamouny

Trustworthly Global Computing

2010

Self Cite

“…The min-entropy approach remains however the canonical framework, not only for its simplicity, but also because the worst-case min-leakage (aka min-capacity) has been proved to be an upper bound to the g-leakage [25]. In [28] the authors extended the vulnerability model of [24] in the context of the Crowds protocol for anonymous message posting to encompass the frequent situation where attackers have extra knowledge. They pointed out that in Crowds the adversary indeed has extra information (viz., the target servers) and assumed that she knows the correlation between that and the secret (viz., the users' preferences for servers).…”

Section: Introductionmentioning

confidence: 99%

“…Indeed, [28] assumes that the adversary's extra information is accurate, and such an assumption is generally not warranted. Inaccuracy can indeed arise, e.g.…”

Section: Introductionmentioning

confidence: 99%

Quantifying leakage in the presence of unreliable sources of information

Palamidessi

Journal of Computer and System Sciences

2017

Self Cite

Belief and min-entropy leakage are two well-known approaches to quantify information flow in security systems. Both concepts stand as alternatives to the traditional approaches founded on Shannon entropy and mutual information, which were shown to provide inadequate security guarantees. In this paper we unify the two concepts in one model so as to cope with the frequent (potentially inaccurate, misleading or outdated) attackers' side information about individuals on social networks, online forums, blogs and other forms of online communication and information sharing. To this end we propose a new metric based on min-entropy that takes into account the adversary's beliefs.

Trust in Anonymity Networks

CONCUR 2010 - Concurrency Theory

Yang

2010

Self Cite

Abstract. Anonymity is a security property of paramount importance, as we move steadily towards a wired, online community. Its import touches upon subjects as different as eGovernance, eBusiness and eLeisure, as well as personal freedom of speech in authoritarian societies. Trust metrics are used in anonymity networks to support and enhance reliability in the absence of verifiable identities, and a variety of security attacks currently focus on degrading a user's trustworthiness in the eyes of the other users. In this paper, we analyse the privacy guarantees of the Crowds anonymity protocol, with and without onion forwarding, for standard and adaptive attacks against the trust level of honest users.