Ming Zheng,Jianping Wu,Haixin Duan

DOI: https://doi.org/10.1109/TrustCom.2013.79

2013-01-01

Abstract:Low-latency anonymous communication is widely used in privacy protection. However, the attacks against anonymous communication are critical threats to the privacy protection. Many efforts have been conducted to provide robustness by establishing anti-attack principles. In this paper we present a brief survey on attack methods and summarize up four underlying anti-attack principles. In order to better understand the background of anonymous communication, we demonstrate the processes of attack and introduce some typical attack methods, ranging from active attacks to passive attacks. Based on our analysis, we propose four underlying principles, including information leaking prevention, key node protection, data stream signatures elimination and connection characteristics elimination, to improve the anti-attack ability of low-latency anonymous communication. To validate these principles, we design a protocol named Hermit-crab, which follows the four anti-attack principles. The analysis shows the protocol can effectively defend common attacks in low-latency anonymous communication.

Tianchen Zhang,Taimin Zhang,Xiaoyu Ji,Wenyuan Xu

DOI: https://doi.org/10.23919/chicc.2019.8866139

2019-01-01

Abstract:Advanced metering infrastructure (AMI) is a key component in the smart grid. Transmitting data robustly and reliably between the tremendous smart meters in the AMI is one of the most crucial tasks for providing various services in smart grid. Among the many efforts for designing practical routing protocols for the AMI, the Routing Protocol for Low-Power and Lossy Networks (RPL) proposed by the IETF ROLL working group is considered the most consolidated candidate. Resent research has shown cyber attacks such as blackhole attack and version number attack can seriously damage the performance of the network implementing RPL. The main reason that RPL. is vulnerable to these kinds of attacks is the lack an authentication mechanism. In this paper, we study the impact of blackhole attacks on the performance of the AMI network and proposed a new blackhole attack that can bypass the existing defense mechanism. Then, we propose a cuckoo filter based RPL to defend the AMI network from blackhole attacks. We also give the security analysis of the proposed method.

Sun Dongbin,Liu Wu,Sun Donghong,Ren Ping

DOI: https://doi.org/10.1109/CGC.2012.57

2012-01-01

Abstract:This paper proposes an Anti-attack Model for Low-latency Anonymous Communication System (AMLACS), which uses Center-P2P architecture to provide high-performance. And AMLACS supports anonymous communication by using spoofed source IP addresses to construct an invisible loop.

WANG Ji-lin,WU Qian-hong,CHEN De-ren,WANG Yu-min

DOI: https://doi.org/10.3321/j.issn:1000-436x.2005.02.019

2005-01-01

Abstract:The study of anonymous techniques was surveyed, corresponding definitions such as link-ability, anonymity and pseudonymity being differentiated, mechanisms used to realize anonymous communication such as Crowds, onion routing and Mix nets being discussed. New issues in the study of the technology of anonymity measurement, anonymous signature algorithm including ring signature and group signature and how to establish mutual trust in anonymous application was given out in the end.

Ming Zheng,Haixin Duan,Jianping Wu

DOI: https://doi.org/10.1007/978-3-642-24650-0_16

2011-01-01

Abstract:Protect the identity of participants may be advantageous or essential and even critical for many internet applications. Mix rings architecture give better performance than mix-nets while maintaining anonymity that is stronger than onion routing. This paper presents an enhancement of mix rings, which is a hybrid P2P system and is designed to provide anonymity under a strong adversarial model in terms of identification, anonymity and resilience to collusion, along with low latency of data delivery and the link utilization. We use a double-layer overlay network, composed of nodes that are interested in anonymity and trusted index nodes and introduce several cluster escape and random extend mechanisms into mix rings. We present a description of the protocol, an analysis of common attack defense, and evaluate the degree of anonymity using MATLAB simulations.

Adam Back,Ulf Möller,Anton Stiglic

DOI: https://doi.org/10.1007/3-540-45496-9_18

2001-01-01

Abstract:We discuss problems and trade-offs with systems providing anonymity for web browsing (or more generally any communication system that requires low latency interaction). We focus on two main systems: the Freedom network [12] and PipeNet [8]. Although Freedom is efficient and reasonably secure against denial of service attacks, it is vulnerable to some generic traffic analysis attacks, which we describe. On the other hand, we look at PipeNet, a simple theoretical model which protects against the traffic analysis attacks we point out, but is vulnerable to denial of services attacks and has efficiency problems. In light of these observations, we discuss the trade-offs that one faces when trying to construct an efficient low latency communication system that protects users anonymity.

Jia Zhang,Haixin Duan,Jianping Wu

DOI: https://doi.org/10.1109/iccee.2008.32

2008-01-01

Abstract:Compared with traditional anonymous communication systems, the low-latency anonymous communication system can provide more practical services. However, because of its low latency, the anonymity is subject to traffic analysis attack. In this paper, we take Tor, a low-latency anonymous communication network as an example and present an improved algorithm of queue scheduling and resource allocation for anonymous communication systems. Experiment shows that through this simple priority-queue scheduling and resource allocation strategy, we can solve latency increase caused by resource exclusion effectively. This improvement not only optimizes the overall performance of the anonymous communication network, but also increases anonymity of the network.

Li Xiao,Xiaomei Liu,Wenjun Gu,Dong Xuan,Yunhao Liu

DOI: https://doi.org/10.1109/ipdps.2006.1639286

2006-01-01

Abstract:Multicast services are demanded by a variety of applications. Many applications require anonymity during their communication. However, there has been very little work on anonymous multicasting and such services are not available yet. Since there are fundamental differences between multicast and unicast, the solutions proposed for anonymity in unicast communications cannot be directly applied to multicast applications. In this paper, we define the anonymous multicast system, and propose a mutual anonymous multicast (MAM) protocol including the design of a unicast mutual anonymity protocol and construction and optimization of an anonymous multicast tree. MAM is self organizing and completely distributed. We define the attack model in an anonymous multicast system and analyze the anonymity degree. We also evaluate the performance of MAM by simulations

Kai Bu,Zhixin Sun

DOI: https://doi.org/10.1109/ICYCS.2008.324

2008-01-01

Abstract:The emergence of Distributed Denial of Service (DDoS) attack increases the destructive force of Denial of Service (DoS) attack drastically. Besides bringing more terrible threats, the attack from far and near and the employment of internet protocol (IP) spoofing make the abnormal traffic detection harder and harder. This paper proposes a mechanism defined as AMHI (Address Matching and Hash Inspection) and a method based on it for DDoS attacks detection and defense. Through the simulation experiment, the Address Matching and backup Hash Inspection operations to the suspicious traffic implemented on router interface for local subnet can detect and defend DDoS attacks effectively even when using IP Spoofing. In addition, this method can also decrease a mass of statistical work for the routers, and to some extent ease the pressure of heavy traffic caused by attacks.

Gang Zeng

DOI: https://doi.org/10.4028/www.scientific.net/amr.971-973.1667

2014-01-01

Advanced Materials Research

Abstract:Anonymous multi-receiver encryption (AME) achieves the security properties of confidentiality and anonymity. Thus, it can be used in VoIP (Voice over Internet Protocol), pay-TV systems, et al. In 2012, Zhang et al. proposed an efficient anonymous multi-receiver encryption protocol. They claimed that their protocol can protect the receiver identity privacy and keep message confidential. In this paper, we point out the weaknesses of Zhang et al.'s protocol. Their protocol cannot satisfy the anonymity against the inner attackers. On the other hand, their AME protocol cannot satisfy the indistinguishability of encryptions under selective multi-identity, chosen ciphertext attacks (IND-AME-CCA). Thus, Zhang et al.'s protocol is insecure. The analysis is important for the engineer to mitigate the security risks.

Yun He,Min Zhang,Xiaolong Yang,Jingtang Luo,Yiming Chen

DOI: https://doi.org/10.1109/access.2020.2981517

IF: 3.9

2020-01-01

IEEE Access

Abstract:In an untrusted Internet environment, there is a large amount of user privacy information being vulnerable to various attacks, and it is an important security concern for users on how to protect their privacy, and to further provide the anonymity guarantee. Recently, most privacy-sensitive users prefer anonymous communication to protect their private information from eavesdropping by attackers. Each user has different privacy protection demands for anonymous communication. However, anonymous communication methods cannot meet the various anonymity needs of users. Hence, the user on-demand anonymous communication is proposed, which can dynamically adjust the anonymity level according to a user's anonymity needs. However, the defense capabilities against attacks are insufficient in the existing user on-demand anonymous communication. Some malicious users in the network employ anonymous communication to hide their identities and attack the Internet. Moreover, the existing user on-demand anonymous communication is weak against traffic classification attacks based on machine learning. Therefore, this paper investigates its progresses and defects in privacy protection and network security. User on-demand anonymous communication is mainly composed of the user side and the transmission side. We separately investigate privacy protection and network security of user on-demand anonymous communication from the user side and the transmission side. By surveying various identity anonymity of users on the user side and the hierarchical anonymous transmission on the transmission side, we find two kinds of serious attacks in user on-demand anonymous communication, i.e., abuse of anonymous communication and traffic classification attacks based on machine learning. To solve the above security issues, we suggest the balancing mechanism of anonymous communication and behavior tracking which is used to prevent anonymous abuse, and the secure defense mechanism which is u-ed to resist traffic classification attacks. To inspire follow-up research, we identify some open problems and emphasize future trends concerning user on-demand anonymous communication.

computer science, information systems,telecommunications,engineering, electrical & electronic

Li Xiao,Yunhao Liu,Wenjun Gu,Dong Xuan,Xiaomei Liu

DOI: https://doi.org/10.1016/j.jpdc.2006.04.002

IF: 4.542

2006-01-01

Journal of Parallel and Distributed Computing

Abstract:Multicast services are demanded by a variety of applications. Many applications require anonymity during their communication. However, there has been very little work on anonymous multicasting and such services are not available yet. Due to the fundamental differences between multicast and unicast, the solutions proposed for anonymity in unicast communications cannot be directly applied to multicast applications. In this paper we define the anonymous multicast system, and propose a mutual anonymous multicast (MAM) protocol including the design of a unicast mutual anonymity protocol and construction and optimization of an anonymous multicast tree. MAM is self-organizing and completely distributed. We define the attack model in an anonymous multicast system and analyze the anonymity degree. We also evaluate the performance of MAM by comprehensive simulations.

Alireza Bahramali,Ramin Soltani,Amir Houmansadr,Dennis Goeckel,Don Towsley

DOI: https://doi.org/10.48550/arXiv.2005.00508

2020-05-01

Cryptography and Security

Abstract:Instant Messaging (IM) applications like Telegram, Signal, and WhatsApp have become extremely popular in recent years. Unfortunately, such IM services have been targets of continuous governmental surveillance and censorship, as these services are home to public and private communication channels on socially and politically sensitive topics. To protect their clients, popular IM services deploy state-of-the-art encryption mechanisms. In this paper, we show that despite the use of advanced encryption, popular IM applications leak sensitive information about their clients to adversaries who merely monitor their encrypted IM traffic, with no need for leveraging any software vulnerabilities of IM applications. Specifically, we devise traffic analysis attacks that enable an adversary to identify administrators as well as members of target IM channels (e.g., forums) with high accuracies. We believe that our study demonstrates a significant, real-world threat to the users of such services given the increasing attempts by oppressive governments at cracking down controversial IM channels. We demonstrate the practicality of our traffic analysis attacks through extensive experiments on real-world IM communications. We show that standard countermeasure techniques such as adding cover traffic can degrade the effectiveness of the attacks we introduce in this paper. We hope that our study will encourage IM providers to integrate effective traffic obfuscation countermeasures into their software. In the meantime, we have designed and deployed an open-source, publicly available countermeasure system, called IMProxy, that can be used by IM clients with no need for any support from IM providers. We have demonstrated the effectiveness of IMProxy through experiments.

Dapeng Cheng,Jinsong Han,Mo Li,Baijian Yang

DOI: https://doi.org/10.1109/ICCCAS.2006.284966

2006-01-01

Abstract:Privacy and anonymity have become an increasing requirement in today's wireless networks. However, current mobile peer-to-peer architectures have not taken into account anonymity, especially the mutual anonymity between two nodes. In this paper, we propose a secure-information-dispersal-algorithm-based mutual anonymity protocol (SIDAM), for mobile P2P networks. SIDAM achieves mutual anonymity in mobile P2P networks. We simulate SIDAM in a prototyped test-bed and initiate comprehensive attacks on our protocol. The simulation results indicate that SIDAM provides high anonymity with a low cryptography processing overhead

Xinwen Fu,Ye Zhu,Bryan Graham,Riccardo Bettati,Wei Zhao

DOI: https://doi.org/10.1166/juci.2007.005

2007-04-01

Journal of Ubiquitous Computing and Intelligence

Abstract:This paper studies the degradation of anonymity in a flow-based wireless mix network under flow marking attacks, in which an adversary embeds a recognizable pattern of marks into wireless traffic flows by electromagnetic interference. We find that traditional mix technologies are not effective in defeating flow marking attacks, and it may take an adversary only a few seconds to recognize the communication relationship between hosts by tracking such intentional marks. Flow marking attacks utilize frequency domain analytical techniques and convert time domain marks into invariant feature frequencies. To counter flow marking attacks, we propose a new class of countermeasure based on digital filtering technology and show that this filter-based countermeasure can effectively defend a wireless mix network from flow marking attacks.

Renpeng Zou,Xixiang Lv

DOI: https://doi.org/10.48550/arXiv.2009.11546

2020-09-24

Abstract:Increasing awareness of privacy-preserving has led to a strong focus on anonymous systems protecting anonymity. By studying early schemes, we summarize some intractable problems of anonymous systems. Centralization setting is a universal problem since most anonymous system rely on central proxies or presetting nodes to forward and mix messages, which compromises users' privacy in some way. Besides, availability becomes another important factor limiting the development of anonymous system due to the large requirement of additional additional resources (i.e. bandwidth and storage) and high latency. Moreover, existing anonymous systems may suffer from different attacks including abominable Man-in-the-Middle (MitM) attacks, Distributed Denial-of-service (DDoS) attacks and so on. In this context, we first come up with a BlockChain-based Mix-Net (BCMN) protocol and theoretically demonstrate its security and anonymity. Then we construct a concrete dynamic self-organizing BlockChain-based MIX anonymous system (BCMIX). In the system, users and mix nodes utilize the blockchain transactions and their addresses to negotiate keys with each other, which can resist the MitM attacks. In addition, we design an IP sharding algorithm to mitigate Sybil attacks. To evaluate the BCMIX system, we leverage the distribution of mining pools in the real world to test the system's performance and ability to resistant attacks. Compared with other systems, BCMIX provides better resilience to known attacks, while achieving low latency anonymous communication without significant bandwidth or storage resources.

Cryptography and Security

Haoyao Xie,Liangmin Wang,Shangnan Yin,Hui Zhao,Hao Shentu

DOI: https://doi.org/10.1109/nana51271.2020.00025

2020-01-01

Abstract:With the rapid increase in the demand of users for communication security, Tor is widely used as the most reliable anonymous communication system. Meek is used as a pluggable transport for Tor, which protects Tor users from traffic analysis by disguising the traffic to the Tor network as the traffic to the cloud server. However, in the face of machine-learning attacks that use side-channel information of traffic, Meek still exposes its lack of obfuscation ability. In this research, we propose an adaptive Meek technology (AM) that resists statistical analysis of traffic to disguise Tor-based Meek traffic as the target traffic to meet the minimum cost of improving indistinguishability. First, this technology selects the target traffic, which can be constantly updated to minimize the overhead of obfuscation. Then, it provides a reliable obfuscation solution to maximize the mimicry effect by focusing on side-channel information. Throughout the obfuscation process, our technology can make obfuscation of Meek traffic achieve dynamics and diversity. We use the traffic dataset of the real scenario, then conduct an experimental evaluation through our well-trained classifiers. After our defense, the effect of the classifier was successfully reduced while the overhead is within an acceptable range.

Hansika Weerasena,Prabhat Mishra

DOI: https://doi.org/10.1145/3677034

IF: 2.013

2024-07-10

ACM Journal on Emerging Technologies in Computing Systems

Abstract:Network-on-Chip (NoC) is widely used to facilitate communication between components in sophisticated System-on-Chip (SoC) designs. Security of the on-chip communication is crucial because exploiting any vulnerability in shared NoC would be a goldmine for an attacker that puts the entire computing infrastructure at risk. We investigate the security strength of existing anonymous routing protocols in NoC architectures, making two pivotal contributions. Firstly, we develop and perform a machine learning (ML)-based flow correlation attack on existing anonymous routing techniques in Network-on-Chip (NoC) systems, revealing that they provide only packet-level anonymity. Secondly, we propose a novel, lightweight anonymous routing protocol featuring outbound traffic tunneling and traffic obfuscation. This protocol is designed to provide robust defense against ML-based flow correlation attacks, ensuring both packet-level and flow-level anonymity. Experimental evaluation using both real and synthetic traffic demonstrates that our proposed attack successfully deanonymizes state-of-the-art anonymous routing in NoC architectures with high accuracy (up to 99%) for diverse traffic patterns. It also reveals that our lightweight anonymous routing protocol can defend against ML-based attacks with minor hardware and performance overhead.

engineering, electrical & electronic,computer science, hardware & architecture,nanoscience & nanotechnology

Parvathinathan Venkitasubramaniam,Ting He,Lang Tong

DOI: https://doi.org/10.1109/tit.2008.921660

IF: 2.5

2008-06-01

IEEE Transactions on Information Theory

Abstract:The problem of security against packet timing based traffic analysis in wireless networks is considered in this work. An analytical measure of “anonymity” of routes in eavesdropped networks is proposed using the information-theoretic equivocation. for a physical layer with orthogonal transmitter directed signaling, scheduling and relaying techniques are designed to maximize achievable network performance for any desired level of anonymity. the network performance is measured by the total rate of packets delivered from the sources to destinations under strict latency and medium access constraints. in particular, analytical results are presented for two scenarios: For a single relay that forwards packets from $m$ users, relaying strategies are provided that minimize the packet drops when the source nodes and the relay generate independent transmission schedules. A relay using such an independent scheduling strategy is undetectable by an eavesdropper and is referred to as a covert relay. Achievable rate regions are characterized under strict and average delay constraints on the traffic, when schedules are independent Poisson processes. For a multihop network with an arbitrary anonymity requirement, the problem of maximizing the sum-rate of flows (network throughput) is considered. A randomized selection strategy to choose covert relays as a function of the routes is designed for this purpose. Using the analytical results for a single covert relay, the strategy is optimized to obtain the maximum achievable throughput as a function of the desired level of anonymity. in particular, the throughput–anonymity relation for the proposed strategy is shown to be equivalent to an information-theoretic rate–distortion function.

computer science, information systems,engineering, electrical & electronic

Xinyuan Wang,Shiping Chen,Sushil Jajodia

DOI: https://doi.org/10.1145/1102120.1102133

2005-01-01

Abstract:Peer-to-peer VoIP calls are becoming increasingly popular due to their advantages in cost and convenience. When these calls are encrypted from end to end and anonymized by low latency anonymizing network, they are considered by many people to be both secure and anonymous.In this paper, we present a watermark technique that could be used for effectively identifying and correlating encrypted, peer-to-peer VoIP calls even if they are anonymized by low latency anonymizing networks. This result is in contrast to many people's perception. The key idea is to embed a unique watermark into the encrypted VoIP flow by slightly adjusting the timing of selected packets. Our analysis shows that it only takes several milliseconds time adjustment to make normal VoIP flows highly unique and the embedded watermark could be preserved across the low latency anonymizing network if appropriate redundancy is applied. Our analytical results are backed up by the real-time experiments performed on leading peer-to-peer VoIP client and on a commercially deployed anonymizing network. Our results demonstrate that (1) tracking anonymous peer-to-peer VoIP calls on the Internet is feasible and (2) low latency anonymizing networks are susceptible to timing attacks.