WANG Ji-lin,WU Qian-hong,CHEN De-ren,WANG Yu-min

DOI: https://doi.org/10.3321/j.issn:1000-436x.2005.02.019

2005-01-01

Abstract:The study of anonymous techniques was surveyed, corresponding definitions such as link-ability, anonymity and pseudonymity being differentiated, mechanisms used to realize anonymous communication such as Crowds, onion routing and Mix nets being discussed. New issues in the study of the technology of anonymity measurement, anonymous signature algorithm including ring signature and group signature and how to establish mutual trust in anonymous application was given out in the end.

Jingting Xue,Lingjie Shi,Liang Liu,Xiaojun Zhang,Fagen Li

DOI: https://doi.org/10.1007/s12083-023-01567-w

IF: 3.488

2023-01-01

Peer-to-Peer Networking and Applications

Abstract:Mixing serves as an effective method to safeguard the privacy of nodes in digital currency systems by introducing a mixer to break the link between transaction inputs and outputs. Existing mixing schemes heavily rely on stringent security assumptions to prevent potential risks, including privacy breaches and coin loss. Recognizing this concern, we propose DcMix, a decentralized private coin mixing scheme that ensures unconditional anonymity for nodes within a peer-to-peer network. To establish a mixing group that offers forward security, we employ the challenge-response model, forming a one-time chat room. This room utilizes a hierarchical key tree structure, generated through a key derivation primitive, wherein distinct branches serve specific purposes. This approach enables nodes in the group to construct their individual key trees, preventing the tracing of mixing records in an open network environment. Additionally, DcMix incorporates a variation of the Abe-Ohkubo-Suzuki (AOS) ring signature to conceal identities from both group nodes and online adversaries. DcMix achieves robust anonymity and transaction unforgeability, effectively countering known message attacks. Experimental results demonstrate that DcMix exhibits a computation overhead approximately 60% lower than CoinParty and CoinLayering with eight mixers. Furthermore, even with a high transaction volume of up to 1,900, DcMix’s computation overhead remains 25% lower than that of the aforementioned schemes.

Sheng Zhong

DOI: https://doi.org/10.1016/j.compeleceng.2009.02.002

IF: 4.152

2009-01-01

Computers & Electrical Engineering

Abstract:A mix is a cryptographic construction for anonymizing communications. Existing mixes require that the public key certificates of mix servers have been distributed among users. In this paper, we propose a new mix that uses techniques from identity-based cryptography. Our mix does not require any public certificates; as long as the users know the identities of mix servers, the mix can anonymize messages. We give proofs of correctness and privacy, as well as analysis of efficiency.

邵立杰,时金桥,李斌

DOI: https://doi.org/10.3969/j.issn.1008-0570.2008.15.025

2008-01-01

Abstract:The (n-1) attack is the most powerful attack against mix which is a basic building block of many modern anonymous systems. This paper aimed to present the design and implementation of an anonymous communication prototype system—RGmix system. The experiment results on the prototype system gave a further proof of the feasibility of the "Regroup and Go" strategy.

Ginger Perng,Michael K. Reiter,Chenxi Wang

DOI: https://doi.org/10.1109/icdcs.2006.53

2006-01-01

Abstract:We present a technique to achieve anonymous multicasting in mix networks to deliver content from producers to consumers. Employing multicast allows content producers to send (and mixes to forward) information to multiple consumers without repeating work for each individual consumer. In our approach, consumers register interest for content by creating paths in the mix network to the content's producers. When possible, these paths are merged in the network so that paths destined for the same producer share a common path suffix to the producer. When a producer sends content, the content travels this common suffix toward its consumers (in the reverse direction) and "branches" into multiple messages when necessary. We detail the design of this technique and then analyze the unlinkability of our approach against a global, passive adversary who controls both the producer and some mixes. We show that there is a subtle degradation of unlinkability that arises from multicast. We discuss techniques to tune our design to mitigate this degradation while retaining the benefits of multicast.

Fatemeh Shirazi,Elena Andreeva,Markulf Kohlweiss,Claudia Diaz

DOI: https://doi.org/10.48550/arXiv.1708.03387

2017-11-09

Abstract:Anonymous communication networks are important building blocks for online privacy protection. One approach to achieve anonymity is to relay messages through multiple routers, where each router shuffles messages independently. To achieve anonymity, at least one router needs to be honest. In the presence of an adversary that is controlling a subset of the routers unbiased routing is important for guaranteeing anonymity. However, the routing strategy also influenced other factors such as the scalability and the performance of the system. One solution is to use a fixed route for relaying all messages with many routers. If the route is not fixed the routing decision can either be made by the communication initiator or the intermediate routers. However, the existing routing types each have limitations. For example, one faces scalability issues when increasing the throughput of systems with fixed routes. Moreover, when the routing decision is left to the initiator, the initiator needs to maintain an up-to-date view of the system at all times, which also does not scale. If the routing decision is left to intermediate routers the routing of the communication can be influenced by an adversary. In this work, we propose a novel multiparty routing approach for anonymous communication that addresses these shortcomings. We distribute the routing decision and verify the correctness of routing to achieve routing integrity. More concretely, we provide a mixnet design that uses our routing approach and that in addition, addresses load balancing. We show that our system is secure against a global active adversary.

Cryptography and Security

Renpeng Zou,Xixiang Lv

DOI: https://doi.org/10.48550/arXiv.2009.11546

2020-09-24

Abstract:Increasing awareness of privacy-preserving has led to a strong focus on anonymous systems protecting anonymity. By studying early schemes, we summarize some intractable problems of anonymous systems. Centralization setting is a universal problem since most anonymous system rely on central proxies or presetting nodes to forward and mix messages, which compromises users' privacy in some way. Besides, availability becomes another important factor limiting the development of anonymous system due to the large requirement of additional additional resources (i.e. bandwidth and storage) and high latency. Moreover, existing anonymous systems may suffer from different attacks including abominable Man-in-the-Middle (MitM) attacks, Distributed Denial-of-service (DDoS) attacks and so on. In this context, we first come up with a BlockChain-based Mix-Net (BCMN) protocol and theoretically demonstrate its security and anonymity. Then we construct a concrete dynamic self-organizing BlockChain-based MIX anonymous system (BCMIX). In the system, users and mix nodes utilize the blockchain transactions and their addresses to negotiate keys with each other, which can resist the MitM attacks. In addition, we design an IP sharding algorithm to mitigate Sybil attacks. To evaluate the BCMIX system, we leverage the distribution of mining pools in the real world to test the system's performance and ability to resistant attacks. Compared with other systems, BCMIX provides better resilience to known attacks, while achieving low latency anonymous communication without significant bandwidth or storage resources.

Cryptography and Security

ZHANG Jia,DUAN Haixin,WU Jianping

DOI: https://doi.org/10.16511/j.cnki.qhdxxb.2011.01.022

2011-01-01

Abstract:Anonymous communications are widely accepted as an important mechanism to protect privacy.However,the Internet protocol(IP) addresses are essentially fixed in the current network environment,so an adversary can destroy anonymity in the system by tracing IP addresses.This paper presents a peer-to-peer(P2P) based anonymous communication mechanism to enhance the anonymity of communications in IPv6 networks.This method improves the IPv6 IP generation algorithm and the onion routing based anonymous communication mechanisms.The system uses IPv6 to provide a wide address space and to periodically change the IP address to avoid privacy loss caused by IP address.The onion routing based mechanism can hide the IP addresses among network segments and encrypt the data.Tests show that integration of these two methods enhances the anonymity of anonymous communication systems,while maintaining communication efficiency and system compatibility.

Zheng Ming,Wu Jianping

DOI: https://doi.org/10.3969/j.issn.1000-386X.2012.10.003

2012-01-01

Abstract:Anonymous communication is a very effective measure for privacy protection.However,the attacks against anonymous communication are also increasing at the time of the development of anonymous communication.In this paper,we first analyse the method and the process of attack against low-latency anonymous communication by malicious attacker and present some defense methods.According to those methods,we then propose a protocol of anonymous communication over invisible mix rings(AMIMR),which utilises the extended source address.We analyse the features of nodes,structure,topology and function in AMIMR.Our analysis on attack tolerance of AMIMR shows that this protocol has strong attack tolerance in blocking attack process and resisting passive attacks and active attacks.Simulation indicates that AMIMR still has high anonymity even in circumstance of quite high malicious node rate.The limitation of AMIMR is that part of its nodes may be restricted by the rule of networks where it is.

Jinsong Han,Yunhao Liu

DOI: https://doi.org/10.1109/tpds.2007.70805

IF: 5.3

2008-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Mobile Peer-to-Peer Networks (MOPNETs) have become popular applications due to their ease of communication and resource sharing patterns in unfixed network infrastructures. As privacy and security are coming under increasing attention, many mobile and ad hoc network protocols attempt to provide mutual anonymity for users. Most existing anonymous designs, however, are path based, where the anonymous communications are achieved via a predetermined path. Such a design suffers from unreliable delivery and high processing overheads and is not practical. We propose a scalable secret-sharing-based mutual anonymity protocol, termed PUZZLE, which enables anonymous query issuance and file delivery for MOPNETs in ad hoc environments by employing Shamir's secret sharing scheme. We present the design of PUZZLE, analyze its degree of security and anonymity, and evaluate its performance by comprehensive trace-driven simulations. Experimental results show that compared with previous designs, PUZZLE achieves mutual anonymous communications with a lower cryptography processing overhead and higher degree of anonymity.

Dapeng Cheng,Jinsong Han,Mo Li,Baijian Yang

DOI: https://doi.org/10.1109/ICCCAS.2006.284966

2006-01-01

Abstract:Privacy and anonymity have become an increasing requirement in today's wireless networks. However, current mobile peer-to-peer architectures have not taken into account anonymity, especially the mutual anonymity between two nodes. In this paper, we propose a secure-information-dispersal-algorithm-based mutual anonymity protocol (SIDAM), for mobile P2P networks. SIDAM achieves mutual anonymity in mobile P2P networks. We simulate SIDAM in a prototyped test-bed and initiate comprehensive attacks on our protocol. The simulation results indicate that SIDAM provides high anonymity with a low cryptography processing overhead

Shishir Nagaraja

DOI: https://doi.org/10.48550/arXiv.0706.0430

2007-06-04

Abstract:As decentralized computing scenarios get ever more popular, unstructured topologies are natural candidates to consider running mix networks upon. We consider mix network topologies where mixes are placed on the nodes of an unstructured network, such as social networks and scale-free random networks. We explore the efficiency and traffic analysis resistance properties of mix networks based on unstructured topologies as opposed to theoretically optimal structured topologies, under high latency conditions. We consider a mix of directed and undirected network models, as well as one real world case study -- the LiveJournal friendship network topology. Our analysis indicates that mix-networks based on scale-free and small-world topologies have, firstly, mix-route lengths that are roughly comparable to those in expander graphs; second, that compromise of the most central nodes has little effect on anonymization properties, and third, batch sizes required for warding off intersection attacks need to be an order of magnitude higher in unstructured networks in comparison with expander graph topologies.

Cryptography and Security,Networking and Internet Architecture

Jinsong Han,Yunhao Liu,Li Xiao,Renyi Xiao,Lionel M. Ni

DOI: https://doi.org/10.1109/ipdps.2005.49

2005-01-01

Abstract:Peer-to-Peer (P2P) computing has become a popular application model because of its easy resource sharing pattern and powerful query search scheme. However, decentralized P2P architecture is scarcely seen to deploy the anonymity on its peers. In this paper, we propose a mutual anonymity protocol, called Secret-sharing-based Mutual Anonymity Protocol (SSMP), for decentralized P2P systems. SSMP employs Shamirs' secret sharing scheme to allow peers to issue queries and responders to deliver requested files anonymously. Compared with pre-vious designs, SSMP achieves mutual anonymity in P2P systems with a high degree of anonymity and a low cryptography processing overhead. We evaluate SSMP by comprehensive simulations.

Jinsong Han,Yunhao Liu

DOI: https://doi.org/10.1109/tpds.2010.98

IF: 5.3

2011-01-01

IEEE Transactions on Parallel and Distributed Systems

Abstract:Although anonymizing Peer-to-Peer (P2P) systems often incurs extra traffic costs, many systems try to mask the identities of their users for privacy considerations. Existing anonymity approaches are mainly path-based: peers have to pre-construct an anonymous path before transmission. The overhead of maintaining and updating such paths is significantly high. We propose Rumor Riding (RR), a lightweight and non-path-based mutual anonymity protocol for decentralized P2P systems. Employing a random walk mechanism, RR takes advantage of lower overhead by mainly using the symmetric cryptographic algorithm. We conduct comprehensive trace-driven simulations to evaluate the effectiveness and efficiency of this design, and compare it with previous approaches. We also introduce some early experiences on RR implementations.

Ania Piotrowska,Jamie Hayes,Tariq Elahi,Sebastian Meiser,George Danezis

DOI: https://doi.org/10.48550/arXiv.1703.00536

2017-03-01

Cryptography and Security

Abstract:We present Loopix, a low-latency anonymous communication system that provides bi-directional 'third-party' sender and receiver anonymity and unobservability. Loopix leverages cover traffic and brief message delays to provide anonymity and achieve traffic analysis resistance, including against a global network adversary. Mixes and clients self-monitor the network via loops of traffic to provide protection against active attacks, and inject cover traffic to provide stronger anonymity and a measure of sender and receiver unobservability. Service providers mediate access in and out of a stratified network of Poisson mix nodes to facilitate accounting and off-line message reception, as well as to keep the number of links in the system low, and to concentrate cover traffic. We provide a theoretical analysis of the Poisson mixing strategy as well as an empirical evaluation of the anonymity provided by the protocol and a functional implementation that we analyze in terms of scalability by running it on AWS EC2. We show that a Loopix relay can handle upwards of 300 messages per second, at a small delay overhead of less than 1.5 ms on top of the delays introduced into messages to provide security. Overall message latency is in the order of seconds - which is low for a mix-system. Furthermore, many mix nodes can be securely added to a stratified topology to scale throughput without sacrificing anonymity.

Jia Zhang,Haixin Duan,Wu Liu,Jianping Wu

DOI: https://doi.org/10.1587/transcom.E92.B.3183

2009-01-01

Abstract:Compared with traditional static anonymous communication networks, the P2P architecture can provide higher anonymity in communication. However. the P2P architecture also leads to more challenges, such as route, stability, trust and so on. In this paper, we present WindTalker, a P2P-based low-latency anonymous communication network. It is a pure decentralized mix network and can provide low-latency services which help users hide their real identity in communication. In order to ensure stability and reliability, WindTalker imports "seed nodes" to help a peer join in the P2P network and the peer nodes can use gossip-based protocol to exchange active information. Moreover, WindTalker uses layer encryption to ensure the information of relayed messages cannot be leaked. In addition. malicious nodes in the network are the major threat to anonymity of P2P anonymous communication, so WindTalker imports a trust mechanism which can help the P2P network exclude malicious nodes and optimize the strategy of peer discovery, tunnel construction, and relaying etc. in anonymous communications. We deploy peer nodes of WindTalker in our campus network to test reliability and analyze anonymity in theory. The network measurement and simulation analysis shows that WindTalker can provide low-latency and reliable anonymous communication services.

Lin Ye,Xiangzhan Yu,Junda Zhao,Dongyang Zhan,Xiaojiang Du,Mohsen Guizani

DOI: https://doi.org/10.1109/ACCESS.2018.2881719

IF: 3.9

2018-01-01

IEEE Access

Abstract:With the development of Internet applications, anonymous communication technology plays a very significant role in protecting personal privacy. As one of the most popular anonymous communication systems, I2P provides strong anonymity through its encryption and communication schemes. However, I2P does not consider the users' preferences, which is difficult to meet the individual demands of specific users and then allows them to decide their anonymity. Thus, this paper proposes two novel user-oriented node selection algorithms that can effectively enhance the anonymity or reduce the communication delay over the I2P network. In order to choose proper nodes, we also investigate key factors to evaluate the nodes. Then, the basic node selection algorithm (BNSA) is proposed to group routing nodes and provide high-performance node candidates. Based on BNSA, the geographic-diversity-oriented node selection algorithm (GDNSA) and the communication-delay-oriented node selection algorithm (CDNSA) are proposed. These can improve the anonymity or communication performance of the I2P network. The GDNSA increases the attack difficulty by establishing tunnels that span multiple regions. In the meantime, the CDNSA reduces the communication delay of the tunnel by selecting the next hop node with the lowest communication delay. Finally, the mathematical analysis and experimental results show that the GDNSA has good resistance to collusion attacks, and the CDNSA reduces the communication delay in spite of weakening a little anonymity.

Peng Zhang,Chuang Lin

DOI: https://doi.org/10.1007/978-3-319-31083-1_5

2016-01-01

Abstract:Wireless network coding is a promising technique that can enhance the throughput of wireless networks. However, such a technique also bears a serious security drawback: it breaks the current privacy-preserving protocols (e.g., Onion Routing), since their operations conflict each other. As user privacy in wireless networks is highly valued nowadays, a new privacy-preserving scheme that can function with wireless network coding becomes indispensable. To this end, this chapter presents a novel anonymity scheme named ANOC, which can function in network coding-based wireless mesh networks. ANOC is built upon the classic Onion Routing protocol and resolves its conflict with network coding by introducing efficient cooperation among relay nodes. Using ANOC, we can perform network coding to achieve a higher throughput, while still preserving user privacy in wireless mesh networks. We formally show how ANOC achieves the property of relationship anonymity and conduct extensive experiments via NSclick to demonstrate its feasibility and efficiency when integrated with network coding.

Ehsan Saboori,Shahriar Mohammadi

DOI: https://doi.org/10.48550/arXiv.1208.3192

2012-08-15

Networking and Internet Architecture

Abstract:One of the most important issues in peer-to-peer networks is anonymity. The major anonymity for peer-to-peer users concerned with the users' identities and actions which can be revealed by any other members. There are many approaches proposed to provide anonymous peer-to-peer communications. An intruder can get information about the content of the data, the sender's and receiver's identities. Anonymous approaches are designed with the following three goals: to protect the identity of provider, to protect the identity of requester and to protect the contents of transferred data between them. This article presents a new peer-to-peer approach to achieve anonymity between a requester and a provider in peer-to-peer networks with trusted servers called suppernode so that the provider will not be able to identify the requester and no other peers can identify the two communicating parties with certainty. This article shows that the proposed algorithm improved reliability and has more security. This algorithm, based on onion routing and randomization, protects transferring data against traffic analysis attack. The ultimate goal of this anonymous communications algorithm is to allow a requester to communicate with a provider in such a manner that nobody can determine the requester's identity and the content of transferred data.

Hooman Mohajeri Moghaddam,Arsalan Mosenia

DOI: https://doi.org/10.48550/arXiv.1911.09642

2019-11-21

Cryptography and Security

Abstract:In an era of pervasive online surveillance, Internet users are in need of better anonymity solutions for online communications without sacrificing performance. Existing overlay anonymity tools, such as the Tor network, suffer from performance limitations and recent proposals to embed anonymity into Internet protocols face fundamental deployment challenges. In this paper, we introduce Practical Anonymity at the NEtwork Level (PANEL), a practical light-weight anonymity solution based on hardware switching. We implement a prototype of PANEL on a high-performance hardware switch (namely, Barefoot Tofino) using P4 network programming language, and examine the validity and performance of the prototype. Based on our empirical results, PANEL achieves 96% of the actual throughput of the switch and adds a low-latency overhead (e.g., 3% overhead in Skype calls), while offering partial deployablility and transparency (i.e., PANEL requires neither client-side nor server-side modifications).