Stadium

Tyagi, Nirvan; Gilad, Yossi; Leung, Debbie; Zaharia, Matei; Zeldovich, Nickolai

doi:10.1145/3132747.3132783

Cited by 69 publications

(14 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, some existing EEMS attempt to also obscure this metadata in transmitting messages, so that the server does not learn both sender and recipient of any message. This can trivially be accomplished by foregoing a central server and doing peer-to-peer communication (note that FACTS may still be useful as a central complaint repository); or using more sophisticated cryptography to hide metadata [6], [10], [41].…”

Section: Alternative Factsmentioning

confidence: 99%

Fighting Fake News in Encrypted Messaging with the Fuzzy Anonymous Complaint Tally System (FACTS)

Liu

Roche

Theriault

et al. 2022

Proceedings 2022 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Recent years have seen a strong uptick in both the prevalence and real-world consequences of false information spread through online platforms. At the same time, encrypted messaging systems such as WhatsApp, Signal, and Telegram, are rapidly gaining popularity as users seek increased privacy in their digital lives. The challenge we address is how to combat the viral spread of misinformation without compromising privacy. Our FACTS system tracks user complaints on messages obliviously, only revealing the message's contents and originator once sufficiently many complaints have been lodged. Our system is private, meaning it does not reveal anything about the senders or contents of messages which have received few or no complaints; secure, meaning there is no way for a malicious user to evade the system or gain an outsized impact over the complaint system; and scalable, as we demonstrate excellent practical efficiency for up to millions of complaints per day. Our main technical contribution is a new collaborative counting Bloom filter, a simple construction with difficult probabilistic analysis, which may have independent interest as a privacy-preserving randomized count sketch data structure. Compared to prior work on message flagging and tracing in end-to-end encrypted messaging, our novel contribution is the addition of a high threshold of multiple complaints that are needed before a message is audited or flagged. We present and carefully analyze the probabilistic performance of our data structure, provide a precise security definition and proof, and then measure the accuracy and scalability of our scheme via experimentation.

show abstract

Section: Alternative Factsmentioning

confidence: 99%

Fighting Fake News in Encrypted Messaging with the Fuzzy Anonymous Complaint Tally System (FACTS)

Liu

Roche

Theriault

et al. 2022

Proceedings 2022 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…Moreover, in Vuvuzela, the adversary can distinguish whether a receiver is participating in a dialing or conversation protocol, whereas in AOT the adversary cannot make this distinction. Stadium [65] adds horizontal scalability and verifiable mixing to Vuvuzela. Deaddrops and AOT's message tags (See Section 4.1) are similar to the rendezvous hash value of the UDM protocol of Chaum et al [17].…”

Section: Anonymous Communication Networkmentioning

confidence: 99%

“…We compare design features and security and efficiency properties of AOT with those of selected other ACSs: original mixnet (OM) [12], cMix [16], Riffle [43], Stadium [65], Vuvuzela [66], and Loopix [55]. Table 1 summarizes the comparison.…”

Section: Comparison With Other Anonymity Systemsmentioning

confidence: 99%

See 1 more Smart Citation

AOT: Anonymization by Oblivious Transfer

Javani,

Sherman

2021

Preprint

View full text Add to dashboard Cite

We introduce AOT, an anonymous communication system based on mix network architecture that uses oblivious transfer (OT) to deliver messages. Using OT to deliver messages helps AOT resist blending (n−1) attacks and helps AOT preserve receiver anonymity, even if a covert adversary controls all nodes in AOT. AOT comprises three levels of nodes, where nodes at each level perform a different function and can scale horizontally. The sender encrypts their payload and a tag-derived from a secret shared between the sender and receiver-with the public key of a Level-2 node and sends them to a Level-1 node. On a public bulletin board, Level-3 nodes publish tags associated with messages ready to be retrieved. Each receiver checks the bulletin board, identifies tags, and receives the associated messages using OT. A receiver can receive their messages even if the receiver is offline when messages are ready. Through what we call a "handshake" process, communicants can use the AOT protocol to establish shared secrets anonymously. Users play an active role in contributing to the unlinkability of messages: periodically, users initiate requests to AOT to receive dummy messages, such that an adversary cannot distinguish real and dummy requests.

show abstract

“…There are by now millions of users using the Tor network [27,28] to break the link between their identities and their messages/packets. As the solutions like Tor network suffer from traffic analysis attacks [11,31,38], anonymous communication becomes an active research area and many works [1,3,29,42,43,47,52,53] aim at providing anonymous communication services efficiently. This work explores the solutions of anonymous communication with the help of secure multi-party computation (MPC).…”

Section: Introductionmentioning

confidence: 99%

RPM: Robust Anonymity at Scale

Kate

2023

PoPETs

View full text Add to dashboard Cite

This work presents RPM, a scalable anonymous communication protocol suite using secure multiparty computation (MPC) with the offline-online model. We generate random, unknown permutation matrices in a secret-shared fashion and achieve improved (online) performance and the lightest communication and computation overhead for the clients compared to the state of art robust anonymous communication protocols. Using square-lattice shuffling, we make our protocol scale well as the number of clients increases. We provide three protocol variants, each targeting different input volumes and MPC frameworks/libraries. Besides, due to the modular design, our protocols can be easily generalized to support more MPC functionalities and security properties as they get developed. We also illustrate how to generalize our protocols to support two-way anonymous communication and secure sorting. We have implemented our protocols using the MP-SPDZ library suit and the benchmark illustrates that our protocols achieve unprecedented online phase performance with practical offline phases.

show abstract

Stadium

Cited by 69 publications

References 39 publications

Fighting Fake News in Encrypted Messaging with the Fuzzy Anonymous Complaint Tally System (FACTS)

Fighting Fake News in Encrypted Messaging with the Fuzzy Anonymous Complaint Tally System (FACTS)

AOT: Anonymization by Oblivious Transfer

RPM: Robust Anonymity at Scale

Contact Info

Product

Resources

About